locky | fad379ba7f9d1b7e2d8efd4f92e622e386e56e4a05499d4a0c80e05072a5d355 | Triage

Submit
Reports

Overview

overview

Static

static

20161205_9...1d0.js

windows7_x64

20161205_9...1d0.js

windows10_x64

Sharing

General

Target

20161205_9ce2d7bf1b9cf61897a960de3e0481d0.js
Size

13KB
Sample

211117-n2dzfaced2
MD5

558d1d1e23ddd0847e8a5f2d5ed4f930
SHA1

9c59224dff0787058da1a8b2c1c6182a1a6dd9d5
SHA256

fad379ba7f9d1b7e2d8efd4f92e622e386e56e4a05499d4a0c80e05072a5d355
SHA512

ad98ec378d4ae717dc93e94fbc672907345e78e85e1d1a0fa3677a517362a6e61ba1322c0a35743ab93d00e4a7968ef603c854e721365a62e9f08b8ad3fc1beb

Score

10^/10

locky locky_osiris ransomware

Static task

static1

Behavioral task

behavioral1

Sample

20161205_9ce2d7bf1b9cf61897a960de3e0481d0.js

Resource

win7-en-20211014

locky locky_osiris ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

20161205_9ce2d7bf1b9cf61897a960de3e0481d0.js

Resource

win10-en-20211014

locky locky_osiris ransomware

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  20161205_9ce2d7bf1b9cf61897a960de3e0481d0.js
- Size
  
  13KB
- MD5
  
  558d1d1e23ddd0847e8a5f2d5ed4f930
- SHA1
  
  9c59224dff0787058da1a8b2c1c6182a1a6dd9d5
- SHA256
  
  fad379ba7f9d1b7e2d8efd4f92e622e386e56e4a05499d4a0c80e05072a5d355
- SHA512
  
  ad98ec378d4ae717dc93e94fbc672907345e78e85e1d1a0fa3677a517362a6e61ba1322c0a35743ab93d00e4a7968ef603c854e721365a62e9f08b8ad3fc1beb
Score

10^/10

locky locky_osiris ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Locky (Osiris variant)
  Variant of the Locky ransomware seen in the wild since early 2017.
  ransomware locky_osiris
- Blocklisted process makes network request
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

lockylocky_osirisransomware

behavioral2

lockylocky_osirisransomware

© 2018-2024

Terms | Privacy