2024-05-11_35cbd1fe84d08fa329e9a301c914fee4_cryptolocker

General

Target

2024-05-11_35cbd1fe84d08fa329e9a301c914fee4_cryptolocker
Size

56KB
MD5

35cbd1fe84d08fa329e9a301c914fee4
SHA1

b1ea3de1a52bc038b6a00c1a76493d3531ed620d
SHA256

5ada41c935543b29b8c2ee5dd65e054078fa22f8017791f13ab77c79e3af0f81
SHA512

c1ba64cccd87fc55022865ec73ad4668a2d5971ce3811c2b953f7e86967bec329c0b5f83e4599b6cc74b1f546fb9d161a08e079ec1c2eef3a5057e0b10ead0f3
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/eln:6j+1NMOtEvwDpjr8oxExeln

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-11_35cbd1fe84d08fa329e9a301c914fee4_cryptolocker