2024-05-16_3d389c8a8eb926703bb328c9e43f1175_cryptolocker

General

Target

2024-05-16_3d389c8a8eb926703bb328c9e43f1175_cryptolocker
Size

48KB
MD5

3d389c8a8eb926703bb328c9e43f1175
SHA1

5e7622b90265fe0342b0b0e92e319b4a228932bb
SHA256

ab4811c21df9e3cbc303e7c0ad4ea064fd5ba4a9df9c6c4cd38d0324061e37b7
SHA512

f0af646d3097d9946c42f7c53ad466fdaff467c61437f18ab1bf1979a15ab979034966ca8aeafe108e12a4426f4a82736aadc28309e46541dc6f0d6b71699deb
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4m:xj+VGMOtEvwDpjy+TN4m

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-16_3d389c8a8eb926703bb328c9e43f1175_cryptolocker