General

  • Target

    2024-05-09_5e2e6dd7937f4ced5a268ceedd6ff712_cryptolocker

  • Size

    56KB

  • MD5

    5e2e6dd7937f4ced5a268ceedd6ff712

  • SHA1

    598f2062e86e8481ccb3919b8c5d05b423665d79

  • SHA256

    a2e7512e3a298a0806ff8ae06e009243985b580c21b08c1f8ff3d54d22467e75

  • SHA512

    e2c7f940b5de461ad2d4c83a7d251b31d01484ef7b2ec09b9ec52e34d7df68624088a4cd9c0523a5bdf1b04bac954736078852add1f3f4ee7f95c9ba85a8953a

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/e60:6j+1NMOtEvwDpjr8oxExe60

Score
10/10

Malware Config

Signatures

  • Detection of CryptoLocker Variants 1 IoCs
  • Detection of Cryptolocker Samples 1 IoCs
  • Detects executables built or packed with MPress PE compressor 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-09_5e2e6dd7937f4ced5a268ceedd6ff712_cryptolocker
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections