2024-04-29_3f46c8281eba4890e6530a801f1ea5af_cryptolocker

General

Target

2024-04-29_3f46c8281eba4890e6530a801f1ea5af_cryptolocker
Size

55KB
MD5

3f46c8281eba4890e6530a801f1ea5af
SHA1

9f65f6bde38a1ec248cfdb0cc5f21161fa37d19f
SHA256

7d876c5cb6f67a72d210d9898965c54d50388ec421aafee22edcbf694b784382
SHA512

8aaa9fe0c9e2df667a5f03ab1328cb4cb9c350914db4547e26dda63bf5f728caed17c5eeb8cf32cc25ad7f3f6ac065074bed82254fbc302f0d00ce8f2399e1b1
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/el8:6j+1NMOtEvwDpjr8oxExel8

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-29_3f46c8281eba4890e6530a801f1ea5af_cryptolocker