locky | af7797bf0df65314f3173e06b114b0498ee0d76c35a243376d1bc1efc4a01347 | Triage

Submit
Reports

Overview

overview

Static

static

af7797bf0d...47.exe

windows7_x64

af7797bf0d...47.exe

windows10-2004_x64

3

Sharing

General

Target

af7797bf0df65314f3173e06b114b0498ee0d76c35a243376d1bc1efc4a01347
Size

256KB
Sample

220628-wx1awadbg2
MD5

beddff97291279cbff84fa55fa85dcc8
SHA1

1a76fc9fcee3ec83e339248197d036789a03e7b8
SHA256

af7797bf0df65314f3173e06b114b0498ee0d76c35a243376d1bc1efc4a01347
SHA512

5c0147e4098afae2dc4a0b801f3b637335801acae0811e99a2c0e0353c8a4433126ff3ace0f276d11c688ea85b8c2b6d7da17f21a489d8c1bddc37f091ce3c6a

Score

10^/10

locky ransomware suricata

Static task

static1

Behavioral task

behavioral1

Sample

af7797bf0df65314f3173e06b114b0498ee0d76c35a243376d1bc1efc4a01347.exe

Resource

win7-20220414-en

locky ransomware suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

af7797bf0df65314f3173e06b114b0498ee0d76c35a243376d1bc1efc4a01347.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  af7797bf0df65314f3173e06b114b0498ee0d76c35a243376d1bc1efc4a01347
- Size
  
  256KB
- MD5
  
  beddff97291279cbff84fa55fa85dcc8
- SHA1
  
  1a76fc9fcee3ec83e339248197d036789a03e7b8
- SHA256
  
  af7797bf0df65314f3173e06b114b0498ee0d76c35a243376d1bc1efc4a01347
- SHA512
  
  5c0147e4098afae2dc4a0b801f3b637335801acae0811e99a2c0e0353c8a4433126ff3ace0f276d11c688ea85b8c2b6d7da17f21a489d8c1bddc37f091ce3c6a
Score

10^/10

locky ransomware suricata
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- suricata: ET MALWARE Ransomware Locky CnC Beacon 21 May
  suricata: ET MALWARE Ransomware Locky CnC Beacon 21 May
  suricata
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Deletes itself
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

lockyransomwaresuricata

behavioral2

© 2018-2024

Terms | Privacy