2024-05-29_e49e8214d02652eebbe3b7174639731b_cryptolocker

General

Target

2024-05-29_e49e8214d02652eebbe3b7174639731b_cryptolocker
Size

49KB
MD5

e49e8214d02652eebbe3b7174639731b
SHA1

fd3a0865cea57deafcaa10f9ead2179b7171754e
SHA256

fedc23016141b37104751b92d02edbe58b0f6e5e27126014e81b903847e3ae29
SHA512

57c657c8298f9f73891f05268bcc7e310f57e8cf3c773d389434552987b65e08a694192e37b98391768c0ec95f53c3c86f177c77f30155d494c99381d3803577
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm06Mz:xj+VGMOtEvwDpjy+viHs7pz

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-29_e49e8214d02652eebbe3b7174639731b_cryptolocker