2024-04-25_d1a48f60229bc02ab6f39a1646bab10b_cryptolocker

General

Target

2024-04-25_d1a48f60229bc02ab6f39a1646bab10b_cryptolocker
Size

49KB
MD5

d1a48f60229bc02ab6f39a1646bab10b
SHA1

4da49ea0e91fb1c7c6f88f23ee18fda8b06ae6d7
SHA256

331bf5503d4852b45313f5369475679ac294404d5992a978799a637ba9fe4a30
SHA512

400c6b7b08d5e92fb55c89124c2986d50ace25ce3ab160dee74a3ada9c871a6da64b7cb555102f276a7ac2f8ed33b1dd1bfd29400f39da9d55528d0e2f47d9f9
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRY+iyHc:6j+1NMOtEvwDpjr8hhXy+iyHc

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-25_d1a48f60229bc02ab6f39a1646bab10b_cryptolocker