2024-05-14_d08bd9dd1143c502f8431b5248e4f28c_cryptolocker

General

Target

2024-05-14_d08bd9dd1143c502f8431b5248e4f28c_cryptolocker
Size

56KB
MD5

d08bd9dd1143c502f8431b5248e4f28c
SHA1

643f3ec164592c79c42b70d4a79a0064c1e348b0
SHA256

629e391091615e71c607d3a86a84a5e82ff9400a5f98c71770823883101d4c09
SHA512

ef1e53e7a234acf9b31ef7a1efeb04097063737c64b2e5417dbb8fa7721e2ebddb8c8138b7119e8f47bc08c9dcb733763ce843d2299244977382708b99765071
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/elA:6j+1NMOtEvwDpjr8oxExelA

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-14_d08bd9dd1143c502f8431b5248e4f28c_cryptolocker