2024-06-01_00578a389763b4f3fd97f0d9760d9fb8_cryptolocker

General

Target

2024-06-01_00578a389763b4f3fd97f0d9760d9fb8_cryptolocker
Size

47KB
MD5

00578a389763b4f3fd97f0d9760d9fb8
SHA1

3403564bb826f93a8ee30c5f4152846299cbebdb
SHA256

fd6ec3a62df2a274e853e9caeb6e75b8e2e3a9f8b280f93a50eaeb50e464d4f6
SHA512

fc322745fb7cd2607b77bb6af7088cd87489fdb82105328dbdfd2d08cb285aedfed641aedbb80f735b06e367376160587cadb6bc9a34abd207ffb0e42b706c83
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRhZl/:xj+VGMOtEvwDpjy+TRhb/

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-01_00578a389763b4f3fd97f0d9760d9fb8_cryptolocker