2024-04-26_1ff6724dc614ab8c90697adbb4e87f93_cryptolocker

General

Target

2024-04-26_1ff6724dc614ab8c90697adbb4e87f93_cryptolocker
Size

50KB
MD5

1ff6724dc614ab8c90697adbb4e87f93
SHA1

20bffe4f3d3c61399c03e329e2a9e12402cdac1b
SHA256

833fa32a4f36530914822d0185c62226ee34f676f97dd414e9bd1d78e5d59de6
SHA512

c1edc7e1664176ebce572b8dc2193c81368cc87730ec39b9d3009c7bdaab09074ca55231ae7e1e588c3e9d496a86d5eaa5286de3e200c62c79619b54b6e7f726
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLtldedHu:xj+VGMOtEvwDpjk/eVu

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-26_1ff6724dc614ab8c90697adbb4e87f93_cryptolocker