2024-05-04_1e88281567b8a804d4cc2516348de520_cryptolocker

General

Target

2024-05-04_1e88281567b8a804d4cc2516348de520_cryptolocker
Size

47KB
MD5

1e88281567b8a804d4cc2516348de520
SHA1

fd89df40d6b4fd35c80d24a97ab3a9887948e8bc
SHA256

996cb56e24bbdae49e806dde3f6e5c3b97cb6b4f835c9297aeb27b9ecb5f1af0
SHA512

a04a85e12735b45a64f33d2beb7d84fbba2cf3c6d4b890a3380d8f65c625280df6e2b2942897482c67077a3a608affed516e6e21911fa492e96509af3e3c2504
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh+E8:xj+VGMOtEvwDpjy+TRh+E8

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-04_1e88281567b8a804d4cc2516348de520_cryptolocker