2024-05-20_e22a2fe3171cbb6ae6fc4c1edbec8bb6_cryptolocker

General

Target

2024-05-20_e22a2fe3171cbb6ae6fc4c1edbec8bb6_cryptolocker
Size

48KB
MD5

e22a2fe3171cbb6ae6fc4c1edbec8bb6
SHA1

552403315615e8520dd351f73be0ba44620cca15
SHA256

13a6f82e8f2caddccb443c94f30c157cd5bf923e796addd7139078d0a04c8aa1
SHA512

52f433f3699e4dcddc8e62cc7f7c5ca82e2ad8db0c271fab475c2008895cf0517a84d1c794f896ec26d64f46dc1a2e970d683d7af380a8e49581778a803b7894
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm0W:xj+VGMOtEvwDpjy+viHs7W

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-20_e22a2fe3171cbb6ae6fc4c1edbec8bb6_cryptolocker