Extracted

Extracted

• • Target

    LockerGoga.bin

  • Size

    1.2MB

  • MD5

    e11502659f6b5c5bd9f78f534bc38fea

  • SHA1

    b5fd5c913de8cbb8565d3c7c67c0fbaa4090122b

  • SHA256

    c97d9bbc80b573bdeeda3812f4d00e5183493dd0d5805e2508728f65977dda15

  • SHA512

    86c8d4556c9e0b7d60ccbfee430eb322388449506ab515549cb8d2785582671f2dc2d2a3bd9daded9853caa8bf94d9f92603a3bc527172a85dc7a83d701f7fd0

  Score

  10^/10

  lockergogabankerpersistenceransomwarespywarestealertrojan

  • LockerGoga

    LockerGoga is a ransomware that is primarily used in targeted, disruptive attacks.

    trojanbankerlockergoga

  • Modifies Installed Components in the registry

    persistence

  • Modifies extensions of user files

    Ransomware generally changes the extension on encrypted files.

    ransomware

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Drops desktop.ini file(s)

  behavioral1behavioral2