locky | 3c968374fb5f51d095b4736b7a4db42b9573171c524a1a1e37a1efdfc14125df | Triage

Submit
Reports

Overview

overview

Static

static

3c968374fb...df.exe

windows7_x64

3c968374fb...df.exe

windows10-2004_x64

Sharing

General

Target

3c968374fb5f51d095b4736b7a4db42b9573171c524a1a1e37a1efdfc14125df
Size

590KB
Sample

220703-hrwtlsbfc2
MD5

75e9203373579458f51c3082a9c142ae
SHA1

9272c5e3d29311eacf6cb1f10c9dfa7c63ad7ada
SHA256

3c968374fb5f51d095b4736b7a4db42b9573171c524a1a1e37a1efdfc14125df
SHA512

d13eeb86ee1dcc8816a3fa78c4daa44f80ed15558ec0735405bd1bfa5015515d0a617d4d5c4ce82ef5168acd796ac85ec95273b16e412852eb4ea7cfb506eac1

Score

10^/10

locky ransomware

Static task

static1

Behavioral task

behavioral1

Sample

3c968374fb5f51d095b4736b7a4db42b9573171c524a1a1e37a1efdfc14125df.exe

Resource

win7-20220414-en

locky ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

3c968374fb5f51d095b4736b7a4db42b9573171c524a1a1e37a1efdfc14125df.exe

Resource

win10v2004-20220414-en

locky ransomware

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  3c968374fb5f51d095b4736b7a4db42b9573171c524a1a1e37a1efdfc14125df
- Size
  
  590KB
- MD5
  
  75e9203373579458f51c3082a9c142ae
- SHA1
  
  9272c5e3d29311eacf6cb1f10c9dfa7c63ad7ada
- SHA256
  
  3c968374fb5f51d095b4736b7a4db42b9573171c524a1a1e37a1efdfc14125df
- SHA512
  
  d13eeb86ee1dcc8816a3fa78c4daa44f80ed15558ec0735405bd1bfa5015515d0a617d4d5c4ce82ef5168acd796ac85ec95273b16e412852eb4ea7cfb506eac1
Score

10^/10

locky ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Inhibit System Recovery

Tasks

static1

behavioral1

lockyransomware

behavioral2

lockyransomware

© 2018-2024

Terms | Privacy