2024-04-17_3d8a4cc5d872cf85527c5f267c8fe97f_cryptolocker

General

Target

2024-04-17_3d8a4cc5d872cf85527c5f267c8fe97f_cryptolocker
Size

104KB
MD5

3d8a4cc5d872cf85527c5f267c8fe97f
SHA1

e71933106782a7d38ef72fbbbf69750fe26d9857
SHA256

67ff4c49a1d419a0053bde4ff7dd4f37625281fe7c9c47757a751e64cbddc3fd
SHA512

00bf32f197a539dc5063e2e9cb3156055247cebf7cc7bd79d412c96a8142273d08fed8f5cf5a960ad23e2465fa39613d2d41ff2a35c1a2c535d5e738ea1b333c
SSDEEP

1536:xj+VGMOtEvwDpjubwQEIiVmkxv/r+Sc0y:xCVDOtEvwDpjW

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-17_3d8a4cc5d872cf85527c5f267c8fe97f_cryptolocker