2024-06-07_8c439bb2dcb06a70693df9b0fa1d1cd2_cryptolocker

General

Target

2024-06-07_8c439bb2dcb06a70693df9b0fa1d1cd2_cryptolocker
Size

58KB
MD5

8c439bb2dcb06a70693df9b0fa1d1cd2
SHA1

588f7efcac5c5d4b2374a5a0c45cf46f91a70079
SHA256

bf7700bd9cd839206a92419966210f3ad6b68940cd294274bf6d02a62171490e
SHA512

b8e1279f851b3271676f4247adc4275748bde8dc3d17e2544d2b2b144d9831f3511ac5cb3ba8450e1ad4c60a1c25587eb8fbe3c7c8745ec8b30241d78ad7469c
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/e64A:6j+1NMOtEvwDpjr8oxExe64A

Score

10^/10

Detection of CryptoLocker Variants 1 IoCs

resource	yara_rule
sample	CryptoLocker_rule2

Detection of Cryptolocker Samples 1 IoCs

resource	yara_rule
sample	CryptoLocker_set1

Detects executables built or packed with MPress PE compressor 1 IoCs

resource	yara_rule
sample	INDICATOR_EXE_Packed_MPress

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-07_8c439bb2dcb06a70693df9b0fa1d1cd2_cryptolocker