2024-04-08_c1c8f7df6dd067f41b6547c9a9d64f32_cryptolocker

General

Target

2024-04-08_c1c8f7df6dd067f41b6547c9a9d64f32_cryptolocker
Size

47KB
MD5

c1c8f7df6dd067f41b6547c9a9d64f32
SHA1

a5a94d83f6766b41f921fe1a4ebcfda2f3848e61
SHA256

9f66cef34f27cd65d88b65614c3c22682dc50679b413aab69cec670ad0234df9
SHA512

c322ced61c91a2937e084501531fe7a0249bcf3a67120e13cbbf83fd56574b56e0cd0a19ffcb6862e9ecb4ba9816a025b47be9aca26ddb633e62985f8749fdfe
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRNa:xj+VGMOtEvwDpjy+TRNa

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-08_c1c8f7df6dd067f41b6547c9a9d64f32_cryptolocker