locky | 332abe1f0c0e87d525b7629e00e711945048cf02e0622ab072afbc8107053926 | Triage

Submit
Reports

Overview

overview

Static

static

332abe1f0c...26.exe

windows7_x64

332abe1f0c...26.exe

windows10-2004_x64

Sharing

General

Target

332abe1f0c0e87d525b7629e00e711945048cf02e0622ab072afbc8107053926
Size

231KB
Sample

220620-d2ssgsdaer
MD5

221b66081f7301bde24f3ec32f71216c
SHA1

c7ac36d8d0414bea71fd67604d0b79b4c7eda831
SHA256

332abe1f0c0e87d525b7629e00e711945048cf02e0622ab072afbc8107053926
SHA512

a761693c888e1c33820ed24ea08f024663702e7ec6747e8960fa887e1775107e537590cd686bc18b32b293892ccb8ddc57ad8dd831628ea34bab31adb80a673d

Score

10^/10

locky ransomware suricata

Static task

static1

Behavioral task

behavioral1

Sample

332abe1f0c0e87d525b7629e00e711945048cf02e0622ab072afbc8107053926.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

332abe1f0c0e87d525b7629e00e711945048cf02e0622ab072afbc8107053926.exe

Resource

win10v2004-20220414-en

locky ransomware suricata

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  332abe1f0c0e87d525b7629e00e711945048cf02e0622ab072afbc8107053926
- Size
  
  231KB
- MD5
  
  221b66081f7301bde24f3ec32f71216c
- SHA1
  
  c7ac36d8d0414bea71fd67604d0b79b4c7eda831
- SHA256
  
  332abe1f0c0e87d525b7629e00e711945048cf02e0622ab072afbc8107053926
- SHA512
  
  a761693c888e1c33820ed24ea08f024663702e7ec6747e8960fa887e1775107e537590cd686bc18b32b293892ccb8ddc57ad8dd831628ea34bab31adb80a673d
Score

10^/10

suricata locky ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- suricata: ET MALWARE Locky CnC Checkin HTTP Pattern
  suricata: ET MALWARE Locky CnC Checkin HTTP Pattern
  suricata
- suricata: ET MALWARE Locky CnC checkin Nov 21
  suricata: ET MALWARE Locky CnC checkin Nov 21
  suricata
- suricata: ET MALWARE Locky CnC checkin Nov 21 M2
  suricata: ET MALWARE Locky CnC checkin Nov 21 M2
  suricata
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lockyransomwaresuricata

© 2018-2024

Terms | Privacy