2024-05-09_0e0b761d389e3f98699c67b9d5184fd6_cryptolocker

General

Target

2024-05-09_0e0b761d389e3f98699c67b9d5184fd6_cryptolocker
Size

48KB
MD5

0e0b761d389e3f98699c67b9d5184fd6
SHA1

a8aab45e558437fb6c8ecc15b3198c5de2a17aca
SHA256

d2584b0f18fffc54bc8068395862512e1dcf9222f7645e9a5ea939992b84ea85
SHA512

f2d6f65e2019dcaa33790b7d7ad7c01208cb7efea2d0c7c7db5eeb016508f513e384c6a63dbf961a33268d429eb18c799c68841010375c0d6768cc571dd020ee
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh+EG:xj+VGMOtEvwDpjy+TRh+EG

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-09_0e0b761d389e3f98699c67b9d5184fd6_cryptolocker