Overview

overview

10

Static

static

1649336db0...49.exe

windows7_x64

10

1649336db0...49.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1649336db033457cb387daba9e83f36b35c8487f1d5dc95356b8a87bad63a749

  • Size

    438KB

  • Sample

    220609-a8qpxsdhd6

  • MD5

    150eb0b98235ca55a041ea93995bc3ef

  • SHA1

    b5ba2c578306e6aeca30892e473ab6a712bfa487

  • SHA256

    1649336db033457cb387daba9e83f36b35c8487f1d5dc95356b8a87bad63a749

  • SHA512

    6ee5cbf14ce4239bbb6626e4b703cc9895c7ca34ba9bab8b2658fe92b1a9847855e0b3dedb657302d5f2e9d8e03e2f62a2a4dd9444f69f1718bd615ea3de8e31

Score
10/10
lockylocky_osirisransomwaresuricata

Malware Config

Targets

    • Target

      1649336db033457cb387daba9e83f36b35c8487f1d5dc95356b8a87bad63a749

    • Size

      438KB

    • MD5

      150eb0b98235ca55a041ea93995bc3ef

    • SHA1

      b5ba2c578306e6aeca30892e473ab6a712bfa487

    • SHA256

      1649336db033457cb387daba9e83f36b35c8487f1d5dc95356b8a87bad63a749

    • SHA512

      6ee5cbf14ce4239bbb6626e4b703cc9895c7ca34ba9bab8b2658fe92b1a9847855e0b3dedb657302d5f2e9d8e03e2f62a2a4dd9444f69f1718bd615ea3de8e31

    Score
    10/10
    lockylocky_osirisransomwaresuricata

    • Locky

      Ransomware strain released in 2016, with advanced features like anti-analysis.

      ransomwarelocky

    • Locky (Osiris variant)

      Variant of the Locky ransomware seen in the wild since early 2017.

      ransomwarelocky_osiris

    • suricata: ET MALWARE Locky CnC Checkin Dec 5 M1

      suricata: ET MALWARE Locky CnC Checkin Dec 5 M1

      suricata

    • suricata: ET MALWARE Locky CnC Checkin HTTP Pattern

      suricata: ET MALWARE Locky CnC Checkin HTTP Pattern

      suricata
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks