2024-05-12_5cd190e9e31be2c5dc54caf5a9e050b9_cryptolocker

General

Target

2024-05-12_5cd190e9e31be2c5dc54caf5a9e050b9_cryptolocker
Size

48KB
MD5

5cd190e9e31be2c5dc54caf5a9e050b9
SHA1

c61e6200b62494fcbce79d5be3772948990b8e2f
SHA256

fd0b1f0e9fc27f33681cce37a6b2fd287eea8549e50767d7ca48f809602421b7
SHA512

c570804cb3c545e72667ad344a4d24c846c62de5f721a7892a624de852d0037dac3db830b89d873819d18cb464153a24ebf27d0e2060d308e6776ec8e17bd09e
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh7ihI:xj+VGMOtEvwDpjy+TRh7iK

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-12_5cd190e9e31be2c5dc54caf5a9e050b9_cryptolocker