locky | 287392425199412cc7e9ead557c1b4d1516511f884774cfd0f79feb1300c5d57 | Triage

Sharing

General

Target

287392425199412cc7e9ead557c1b4d1516511f884774cfd0f79feb1300c5d57
Size

110KB
Sample

220615-v4wetscec2
MD5

76feaf6e14049057bdfc1606421a2350
SHA1

4df6ea142b356257f9960d6bacda3be20a49df5f
SHA256

287392425199412cc7e9ead557c1b4d1516511f884774cfd0f79feb1300c5d57
SHA512

21fe9f07f4fee39150376a43332395fd1238384ae1361248a17ae0a33313e216593eb1aefec4621c69b4ef1bc21f1110bb367fea10720cf4ebb884ab83d907fd

Score

10^/10

locky ransomware

Malware Config

Targets

- Target
  
  287392425199412cc7e9ead557c1b4d1516511f884774cfd0f79feb1300c5d57
- Size
  
  110KB
- MD5
  
  76feaf6e14049057bdfc1606421a2350
- SHA1
  
  4df6ea142b356257f9960d6bacda3be20a49df5f
- SHA256
  
  287392425199412cc7e9ead557c1b4d1516511f884774cfd0f79feb1300c5d57
- SHA512
  
  21fe9f07f4fee39150376a43332395fd1238384ae1361248a17ae0a33313e216593eb1aefec4621c69b4ef1bc21f1110bb367fea10720cf4ebb884ab83d907fd
Score

10^/10

locky ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

behavioral1

lockyransomware

behavioral2

lockyransomware