2024-05-04_e63b5826d1f6a561ec37246a0dd868dc_cryptolocker

General

Target

2024-05-04_e63b5826d1f6a561ec37246a0dd868dc_cryptolocker
Size

47KB
MD5

e63b5826d1f6a561ec37246a0dd868dc
SHA1

3f0e68d8cf9c099a835d989abfd4abb009152218
SHA256

61979d1856c9ff3ad2bb45b578722f79b664f8e83edd5fd78a94a22a0d2c627e
SHA512

2a6fb2c0fdf23d36a1d5b2a323b227befe6bfa3dce6ff37d2a7e87b2d236ae6450fbf174aa67db0ce328f2b4c5862c5e62b3cb4ad603d2689355f6daa7b2dfaa
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh+Ee:xj+VGMOtEvwDpjy+TRh+Ee

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-04_e63b5826d1f6a561ec37246a0dd868dc_cryptolocker