Overview

overview

10

Static

static

28df46fe98...ce.exe

windows7_x64

10

28df46fe98...ce.exe

windows10-2004_x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    28df46fe9876341394f8f0e4dcf17bd76f451ea8347104470acb59291f1735ce

  • Size

    770KB

  • Sample

    220615-tnz8eaegbk

  • MD5

    8ac7c66efdeefceea010123faa515cdf

  • SHA1

    961c26caade6bb374efb19319411f04183af2cb0

  • SHA256

    28df46fe9876341394f8f0e4dcf17bd76f451ea8347104470acb59291f1735ce

  • SHA512

    621d2229400f1900fa78852551b2447577d72b5fe482206b3a2c37c928c9db12057419fde4e5cf81e5deb086618d128b5db1dac7fb26b5fc44ab2765e508c798

Score
10/10
lockyransomware

Malware Config

Targets

    • Target

      28df46fe9876341394f8f0e4dcf17bd76f451ea8347104470acb59291f1735ce

    • Size

      770KB

    • MD5

      8ac7c66efdeefceea010123faa515cdf

    • SHA1

      961c26caade6bb374efb19319411f04183af2cb0

    • SHA256

      28df46fe9876341394f8f0e4dcf17bd76f451ea8347104470acb59291f1735ce

    • SHA512

      621d2229400f1900fa78852551b2447577d72b5fe482206b3a2c37c928c9db12057419fde4e5cf81e5deb086618d128b5db1dac7fb26b5fc44ab2765e508c798

    Score
    10/10
    lockyransomware

    • Locky

      Ransomware strain released in 2016, with advanced features like anti-analysis.

      ransomwarelocky

    • Deletes shadow copies

      Ransomware often targets backup files to inhibit system recovery.

      ransomware

    • Modifies extensions of user files

      Ransomware generally changes the extension on encrypted files.

      ransomware

    • Deletes itself

    • Sets desktop wallpaper using registry

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks