2024-05-05_1fd6b761ed52b3b6b9c69111b225a6de_cryptolocker

General

Target

2024-05-05_1fd6b761ed52b3b6b9c69111b225a6de_cryptolocker
Size

56KB
MD5

1fd6b761ed52b3b6b9c69111b225a6de
SHA1

e64f5cb4a5d1e8a17cbd58456e6e7e4dc3646ddd
SHA256

14571660d36c7b6a2cd43cb24d2c64a43198c2c3524457e9d571aea7c3d5682c
SHA512

941d60619e60a6900bf7d4065b4d3b7618546d4fcc5acc98f4f1ebdc78650ec58f2c1ab4ffca345fe0172f5bd1ef7d359c46a44fb3bbc1a56da935dd406e264f
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/el5:6j+1NMOtEvwDpjr8oxExel5

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-05_1fd6b761ed52b3b6b9c69111b225a6de_cryptolocker