2024-05-05_eddf3f910a5f8b7e38e138b3a2577ca5_cryptolocker

General

Target

2024-05-05_eddf3f910a5f8b7e38e138b3a2577ca5_cryptolocker
Size

48KB
MD5

eddf3f910a5f8b7e38e138b3a2577ca5
SHA1

c340e9739408567ed8f185724848d25eb4106ef8
SHA256

1c6edb7225671b0b95603750e0ac4ce478adf35556b3a036783c2a3ddaab6ff3
SHA512

85735c92c0842e1fa3685bc55cf27d2f7a6b3925633a793461f7d82757e0a2ab565d7c473f7c12bfb0b4662d5f03c442fc04e6052593f97165dda5989af0614e
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh7ihJ:xj+VGMOtEvwDpjy+TRh7i/

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-05_eddf3f910a5f8b7e38e138b3a2577ca5_cryptolocker