2024-04-27_ff65b542404008db825d3d55d4ada99b_cryptolocker

General

Target

2024-04-27_ff65b542404008db825d3d55d4ada99b_cryptolocker
Size

49KB
MD5

ff65b542404008db825d3d55d4ada99b
SHA1

d5b8b3ac1e6624a40d99b76b3291ee31aae27679
SHA256

02db39fca645aedf840b2e8b34aad73d9cc86a26f02704fd3296a45edb17e8af
SHA512

b9baf128eaf525b729be4c068ba41dd93d359eaf575a91ca549d8e98f1f4ebdc0cd05a237983e89581f08f0d8d72ed42c9251b559a26852ce86ae1c26bda7b8e
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4NOD:xj+VGMOtEvwDpjy+TN4s

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-27_ff65b542404008db825d3d55d4ada99b_cryptolocker