2024-06-05_d5e66001752de5d49aff8b5404dcbf09_cryptolocker

General

Target

2024-06-05_d5e66001752de5d49aff8b5404dcbf09_cryptolocker
Size

49KB
MD5

d5e66001752de5d49aff8b5404dcbf09
SHA1

db81532a6cbafb866e8229bccfe915a10ee0284d
SHA256

146846cbfa1b83c76af9065af646261d19bdc87664d4dcd0f8f79032e57ecece
SHA512

80e67124e3ed4c7c38cb0e36b8a51ac22157223924f550fcb54bccf90e6bfb6845a09a72336ea3eeb5a24e4d4d5f1688f4a6a54e9d58f72279ba71980bb67a34
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm06MM:xj+VGMOtEvwDpjy+viHs7pM

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-05_d5e66001752de5d49aff8b5404dcbf09_cryptolocker