General
-
Target
LegionLocker.exe
-
Size
6.6MB
-
MD5
9a72a508fcee3de957167a386f173c44
-
SHA1
55650582fc704d27cd7d95f971b0ddd13dcd9eaf
-
SHA256
22b1a6c34e47c23083fc1d2e3d01bc9dbd3fd4429e13aad6797ad41313447708
-
SHA512
fb8073e5d0c14dbe1780bed15b6a492c0db386acb56b834f56eae9d76cf9872dd95396fd8d6d06048864227fcc90f8cae9d7853169536835a183ea2099994262
-
SSDEEP
98304:YCyQNM7Xbqx2fzKx3W8mmCyQNM7Xbqx2fzKx3W8mF:YtSMfqx2fmx3WZmtSMfqx2fmx3WZF
Score
10/10
Malware Config
Signatures
-
Detected LegionLocker ransomware 1 IoCs
Sample contains strings associated with the LegionLocker family.
-
Legionlocker family
-
Themida packer 1 IoCs
Detects Themida, an advanced Windows software protection system.
Files
-
LegionLocker.exe
Code Sign
Headers
Sections