locky | 423dc1aaaed311349f9932a643a032d18f0589b97275b501a7a7f6955f5aac46 | Triage

Submit
Reports

Overview

overview

Static

static

423dc1aaae...46.exe

windows7_x64

423dc1aaae...46.exe

windows10-2004_x64

1

Sharing

General

Target

423dc1aaaed311349f9932a643a032d18f0589b97275b501a7a7f6955f5aac46
Size

756KB
Sample

220708-dp8ceafadp
MD5

a4872e4fe84e5adcc49ba4c641547821
SHA1

38fbc212ba2fde3dc0d9f3e9fa27df1411604398
SHA256

423dc1aaaed311349f9932a643a032d18f0589b97275b501a7a7f6955f5aac46
SHA512

49ac155e08532ee109d62b8105b14a94cd00b29999e4d49356f72157bea87dd0ee4b1b7d059cd6d7cc08711b2db83bde20824ada64e7b4acb611465d32358ca4

Score

10^/10

locky ransomware

Static task

static1

Behavioral task

behavioral1

Sample

423dc1aaaed311349f9932a643a032d18f0589b97275b501a7a7f6955f5aac46.exe

Resource

win7-20220414-en

locky ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

423dc1aaaed311349f9932a643a032d18f0589b97275b501a7a7f6955f5aac46.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  423dc1aaaed311349f9932a643a032d18f0589b97275b501a7a7f6955f5aac46
- Size
  
  756KB
- MD5
  
  a4872e4fe84e5adcc49ba4c641547821
- SHA1
  
  38fbc212ba2fde3dc0d9f3e9fa27df1411604398
- SHA256
  
  423dc1aaaed311349f9932a643a032d18f0589b97275b501a7a7f6955f5aac46
- SHA512
  
  49ac155e08532ee109d62b8105b14a94cd00b29999e4d49356f72157bea87dd0ee4b1b7d059cd6d7cc08711b2db83bde20824ada64e7b4acb611465d32358ca4
Score

10^/10

locky ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
- Deletes itself
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Inhibit System Recovery

Tasks

static1

behavioral1

lockyransomware

behavioral2

© 2018-2024

Terms | Privacy