2024-05-01_8e94a380ae7bb7a0f3e1cef19fdd597c_cryptolocker

General

Target

2024-05-01_8e94a380ae7bb7a0f3e1cef19fdd597c_cryptolocker
Size

49KB
MD5

8e94a380ae7bb7a0f3e1cef19fdd597c
SHA1

bb2ca0e262809253cc2c5adfcc826bcf6f83e439
SHA256

eca53719cdc4be7f9d9a04bd1864e72520c02bdc699580c3beed00bbde3cbc94
SHA512

9445779512b39b884769ea2dc1a2d4e06903d25bbeb2259cfee684fe7ba80359b7bd3948381cb2eb919268bc8e8e957b6043ad280e9f7ec66161829ad96852f7
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4NO5:xj+VGMOtEvwDpjy+TN4a

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-01_8e94a380ae7bb7a0f3e1cef19fdd597c_cryptolocker