2024-06-04_245828f648f84f1913dea0c689dfc7f9_cryptolocker

General

Target

2024-06-04_245828f648f84f1913dea0c689dfc7f9_cryptolocker
Size

97KB
MD5

245828f648f84f1913dea0c689dfc7f9
SHA1

143058442046e673166f9d71f7a4ced15e6d8957
SHA256

ec05e5fe2b1e1c9f86744b8f43d578013d63b82b399e19484338095b646922db
SHA512

8677aac5dcfe6012a5dee8d8d16f122d31505c9cbc32ecb53b3bc98f7defdd6cc7e0b25d3351ac1d3c74aaf0b7cb4ea6fb477a81fb4d080f54e4dc6f10f33d57
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJyqd8:xj+VGMOtEvwDpjubwQEIiVmkuqS

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-04_245828f648f84f1913dea0c689dfc7f9_cryptolocker