legionlocker | b43853b0cf911db59117c70e34e373c47235ceff58f226d2bb72abb5f0c49416 | Triage

Submit
Reports

Overview

overview

Static

static

HEUR-Troja...16.exe

windows7-x64

HEUR-Troja...16.exe

windows10-2004-x64

Sharing

General

Target

HEUR-Trojan-Ransom.MSIL.Agent.gen-b43853b0cf911db59117c70e34e373c47235ceff58f226d2bb72abb5f0c49416.exe
Size

14KB
Sample

220925-vdzdssfdg7
MD5

1d67ad9ff37e4fd8c3d6b2eeaea6ef97
SHA1

b8e7d26fd11bc747662665dd24fa7b46e99522cb
SHA256

b43853b0cf911db59117c70e34e373c47235ceff58f226d2bb72abb5f0c49416
SHA512

489641c86fe8619cc25439625af0ab8bf6bd36135319c0fd46602275772ad6a8a0bf18e4762ddb352a11215619aa92bb8c1fdbd0ba808adafaf117cf64f01dd4
SSDEEP

192:AqX2hHT/DAZb6R/NjkxizbNjL1VhS8MC3fV6nopLCRntOwyfNnBq:76z/0Zb6BiozBNVtMMfkn4ItO/fJB

Score

10^/10

legionlocker ransomware

Static task

static1

ransomware legionlocker

2 signatures

Behavioral task

behavioral1

Sample

HEUR-Trojan-Ransom.MSIL.Agent.gen-b43853b0cf911db59117c70e34e373c47235ceff58f226d2bb72abb5f0c49416.exe

Resource

win7-20220812-en

legionlocker ransomware

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

HEUR-Trojan-Ransom.MSIL.Agent.gen-b43853b0cf911db59117c70e34e373c47235ceff58f226d2bb72abb5f0c49416.exe

Resource

win10v2004-20220812-en

legionlocker ransomware

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  HEUR-Trojan-Ransom.MSIL.Agent.gen-b43853b0cf911db59117c70e34e373c47235ceff58f226d2bb72abb5f0c49416.exe
- Size
  
  14KB
- MD5
  
  1d67ad9ff37e4fd8c3d6b2eeaea6ef97
- SHA1
  
  b8e7d26fd11bc747662665dd24fa7b46e99522cb
- SHA256
  
  b43853b0cf911db59117c70e34e373c47235ceff58f226d2bb72abb5f0c49416
- SHA512
  
  489641c86fe8619cc25439625af0ab8bf6bd36135319c0fd46602275772ad6a8a0bf18e4762ddb352a11215619aa92bb8c1fdbd0ba808adafaf117cf64f01dd4
- SSDEEP
  
  192:AqX2hHT/DAZb6R/NjkxizbNjL1VhS8MC3fV6nopLCRntOwyfNnBq:76z/0Zb6BiozBNVtMMfkn4ItO/fJB
Score

10^/10

legionlocker ransomware
- LegionLocker
  Ransomware family active in 2021.
  ransomware legionlocker
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

ransomwarelegionlocker

behavioral1

legionlockerransomware

behavioral2

legionlockerransomware

© 2018-2024

Terms | Privacy