2024-05-26_03d12636f5052f8efd36b07d324cffc7_cryptolocker

General

Target

2024-05-26_03d12636f5052f8efd36b07d324cffc7_cryptolocker
Size

44KB
MD5

03d12636f5052f8efd36b07d324cffc7
SHA1

60e4dbe608bf8c65a6e55db513446ff609d96bd8
SHA256

eba7909c2548d4176a1571f2f81c1d4e15092cb8954d5e00b1d5f95556d41bc5
SHA512

897e617685987edf964ab1fb4f4ffbadbfc43272e6ebdccbfb2a13bc881d66b4852a5ef0419ef6b99209203e63c55bcd2e2d45cdac538b79fabf2cae571e0fab
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMD9:6j+1NMOtEvwDpjrRrx

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-26_03d12636f5052f8efd36b07d324cffc7_cryptolocker