locky | a5ef60f241b19d7cb7e1f0596a2af65c6d566e258b0c93c3873c43707e2736e1 | Triage

Submit
Reports

Overview

overview

Static

static

3

s.exe

windows7-x64

s.exe

windows10-2004-x64

7

Sharing

General

Target

s.exe
Size

346KB
Sample

240316-pkt5rsch76
MD5

a74d9656846fe2eeb894208dc644e293
SHA1

03ef2be7ee0bc8477ed219cf4f5e9ebb52c8b77a
SHA256

a5ef60f241b19d7cb7e1f0596a2af65c6d566e258b0c93c3873c43707e2736e1
SHA512

ebb4db3aa3f606c9e8610b24c4ed640f295562f3b8d2a4f7dc10ab3ab21c8f7526c81b7089006005e2ea625714c150f2b981a47235a6754158927c27f2068647
SSDEEP

6144:vmRpztgbufFboix2p6MNj1GnuzkU7i7reD6g8uOqG2H8:vmR3gbOF8W2EYkOinfgPhzH8

Score

10^/10

locky ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

s.exe

Resource

win7-20240221-en

locky ransomware

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

s.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  s.exe
- Size
  
  346KB
- MD5
  
  a74d9656846fe2eeb894208dc644e293
- SHA1
  
  03ef2be7ee0bc8477ed219cf4f5e9ebb52c8b77a
- SHA256
  
  a5ef60f241b19d7cb7e1f0596a2af65c6d566e258b0c93c3873c43707e2736e1
- SHA512
  
  ebb4db3aa3f606c9e8610b24c4ed640f295562f3b8d2a4f7dc10ab3ab21c8f7526c81b7089006005e2ea625714c150f2b981a47235a6754158927c27f2068647
- SSDEEP
  
  6144:vmRpztgbufFboix2p6MNj1GnuzkU7i7reD6g8uOqG2H8:vmR3gbOF8W2EYkOinfgPhzH8
Score

10^/10

locky ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

lockyransomware

behavioral2

© 2018-2024

Terms | Privacy