2024-05-03_baa3f48f8a4a793f0423b8944e26f531_cryptolocker

General

Target

2024-05-03_baa3f48f8a4a793f0423b8944e26f531_cryptolocker
Size

47KB
MD5

baa3f48f8a4a793f0423b8944e26f531
SHA1

f9b9de9bee5cfbec320d7d75a9ec2d105840d451
SHA256

50b103c67df9d9b0150ddc0a9da33fdcc787e126724e16ee5ae90528fffae126
SHA512

10d268e15aa859726abea7156720952c50f13682edad90534331e882b1a313c4abf66fbbd730626adfbde28bdc3e0e945bb270684f7b957a28009ff5e577cfb3
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh7j:xj+VGMOtEvwDpjy+TRh7j

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-03_baa3f48f8a4a793f0423b8944e26f531_cryptolocker