2024-05-22_1d9db009cea8a4fbe4b6e54124c0c2e2_cryptolocker

General

Target

2024-05-22_1d9db009cea8a4fbe4b6e54124c0c2e2_cryptolocker
Size

49KB
MD5

1d9db009cea8a4fbe4b6e54124c0c2e2
SHA1

6e81953efdad6066bdab9e6bf9b6c5051e56345e
SHA256

d29e81d5e1552db2782af0b1aa8f2cdc30486c4afcf7aebf32ec9470d5f90545
SHA512

c8275aa7ce1f6bb21e06c546fdb0f9be6dc8bee596067655c5b95f4a0b7ee6bab5eb976cda50bae67701fa70c871c245a7fc13a7f358275aa3a2d276a4d980b7
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm0h:xj+VGMOtEvwDpjy+viHs7h

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-22_1d9db009cea8a4fbe4b6e54124c0c2e2_cryptolocker