2024-05-10_ef45f8ba64167d8e1ac63b479cbb4cef_cryptolocker

General

Target

2024-05-10_ef45f8ba64167d8e1ac63b479cbb4cef_cryptolocker
Size

50KB
MD5

ef45f8ba64167d8e1ac63b479cbb4cef
SHA1

294d264f77b6a7c4ac6967b5e4820fb22303d1b1
SHA256

d28235ef60aa94fd08e3f57c07d7375b4de93dfdbd5523932e9827decc1aadab
SHA512

71143b09483b0bf3c5ff6d4871389d601732163f91c9e12d188a65b24040ef86da041208df147cba549430d52ee62b70318b9158d6e06e5a06deea5ed67a53c2
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4NOQL:xj+VGMOtEvwDpjy+TN43L

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-10_ef45f8ba64167d8e1ac63b479cbb4cef_cryptolocker