infinitylock | f9f20ca0a61f83cd1ba52d6c5c31445900e6ed5459f85527613292db56229794 | Triage

Resubmissions

10-06-2021 11:22

210610-r1hpg5wmq2 10

10-06-2021 09:08

210610-eadbc92qha 10

Sharing

General

Target

PremiereCrack.exe
Size

89KB
Sample

210610-eadbc92qha
MD5

f7f63358ce4d52e3e73fa449b5a00f57
SHA1

892b623f4f725683d0deed79a168b3a11c8c492c
SHA256

f9f20ca0a61f83cd1ba52d6c5c31445900e6ed5459f85527613292db56229794
SHA512

4c044f48daaf5ff82f521ed81f9132b31ab3a91aee6ed257e7d4d8c8e7281d350ab7e4aebd9e80da0c4894290c58a8c8c36e18f6a87c0fe7b560b8cb538a4f31

Score

10^/10

infinitylock ransomware

Malware Config

Targets

- Target
  
  PremiereCrack.exe
- Size
  
  89KB
- MD5
  
  f7f63358ce4d52e3e73fa449b5a00f57
- SHA1
  
  892b623f4f725683d0deed79a168b3a11c8c492c
- SHA256
  
  f9f20ca0a61f83cd1ba52d6c5c31445900e6ed5459f85527613292db56229794
- SHA512
  
  4c044f48daaf5ff82f521ed81f9132b31ab3a91aee6ed257e7d4d8c8e7281d350ab7e4aebd9e80da0c4894290c58a8c8c36e18f6a87c0fe7b560b8cb538a4f31
Score

10^/10

infinitylock ransomware
- InfinityLock Ransomware
  Also known as InfinityCrypt. Based on the open-source HiddenTear ransomware.
  ransomware infinitylock
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

infinitylockransomware

behavioral2

infinitylockransomware