2024-04-15_49908e6fcdec9c131078465d103f172e_cryptolocker

General

Target

2024-04-15_49908e6fcdec9c131078465d103f172e_cryptolocker
Size

67KB
MD5

49908e6fcdec9c131078465d103f172e
SHA1

0241a1732f6e5e7797ae5d21d4da4ef8ebeca9ab
SHA256

c0a38c1f314eb2e13f325a98fd12e19d1a81125fb90341dca96c42a7f1566a98
SHA512

e9384c98298dc1b5ebf4fcf200a551614d0e33822d789c6bc2a9028e52baf6041858b0b26e2410c8d8dbfd4f49bc312efe25ddd38008522754834496fe205208
SSDEEP

768:quVbxjgQNQXtckstOOtEvwDpjAaDOK6PsED3VK2+ZtyOjgO4r9vFAg2rq6W1A1Pj:quJu9cvMOtEvwDpjWYTjipvF2bx1PQAj

Score

10^/10

upx

Detection of CryptoLocker Variants 2 IoCs

resource	yara_rule
sample	CryptoLocker_rule2
static1/unpack001/out.upx	CryptoLocker_rule2

Detection of Cryptolocker Samples 2 IoCs

resource	yara_rule
sample	CryptoLocker_set1
static1/unpack001/out.upx	CryptoLocker_set1

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
2024-04-15_49908e6fcdec9c131078465d103f172e_cryptolocker
unpack001/out.upx