infinitylock | f9f20ca0a61f83cd1ba52d6c5c31445900e6ed5459f85527613292db56229794 | Triage

Resubmissions

10-06-2021 11:22

210610-r1hpg5wmq2 10

10-06-2021 09:08

210610-eadbc92qha 10

Sharing

General

Target

PremiereCrack.exe
Size

89KB
Sample

210610-eadbc92qha
MD5

f7f63358ce4d52e3e73fa449b5a00f57
SHA1

892b623f4f725683d0deed79a168b3a11c8c492c
SHA256

f9f20ca0a61f83cd1ba52d6c5c31445900e6ed5459f85527613292db56229794
SHA512

4c044f48daaf5ff82f521ed81f9132b31ab3a91aee6ed257e7d4d8c8e7281d350ab7e4aebd9e80da0c4894290c58a8c8c36e18f6a87c0fe7b560b8cb538a4f31

Score

10^/10

infinitylock ransomware

Malware Config

Targets

- Target
  
  PremiereCrack.exe
- Size
  
  89KB
- MD5
  
  f7f63358ce4d52e3e73fa449b5a00f57
- SHA1
  
  892b623f4f725683d0deed79a168b3a11c8c492c
- SHA256
  
  f9f20ca0a61f83cd1ba52d6c5c31445900e6ed5459f85527613292db56229794
- SHA512
  
  4c044f48daaf5ff82f521ed81f9132b31ab3a91aee6ed257e7d4d8c8e7281d350ab7e4aebd9e80da0c4894290c58a8c8c36e18f6a87c0fe7b560b8cb538a4f31
Score

10^/10

infinitylock ransomware
- InfinityLock Ransomware
  Also known as InfinityCrypt. Based on the open-source HiddenTear ransomware.
  ransomware infinitylock
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

infinitylockransomware

behavioral2

infinitylockransomware