2024-05-14_20d697a08acf86c961376aa0bca3910b_cryptolocker

General

Target

2024-05-14_20d697a08acf86c961376aa0bca3910b_cryptolocker
Size

50KB
MD5

20d697a08acf86c961376aa0bca3910b
SHA1

0aa4a597b5075ea5b1a76ac82dd93c8d964486c9
SHA256

eef25268e6e726d8314c5bed1922aeead7951e40c129e6fadf257466d95e3cc6
SHA512

9cfc4a736f49f5bebca1d401211070f1df6dd37e65039b17fc246004b0153ddf0271efb64773eabcf2016beecf11413c4e5423cf32b4193fd53ffb2bef0f356c
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRsAa:6j+1NMOtEvwDpjr8hhXGB

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-14_20d697a08acf86c961376aa0bca3910b_cryptolocker