2024-04-09_06f70f9639a4077e0c8637e4961683cc_cryptolocker

General

Target

2024-04-09_06f70f9639a4077e0c8637e4961683cc_cryptolocker
Size

100KB
MD5

06f70f9639a4077e0c8637e4961683cc
SHA1

f643a8a102e61abf8eefaa69d0611c83efd4d010
SHA256

573fe6ef424980a8bdba90e2b5836b535d10b99ed02f87768dd99ddde7fe5c73
SHA512

51519daa0928f2f12ad32f048125e2322bafeb6f522ddf0655b8d8af89b783cfcacb015344e36cfd8f271aa2cbdc100d6ae3393adfe5c3e73bff251ddc78f184
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2zs:xj+VGMOtEvwDpjubwQEIiVmkxv/Ps

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-09_06f70f9639a4077e0c8637e4961683cc_cryptolocker