locky | fdfd1e7e431f05e01a3c3be9077956b45ab691abbf039cc7e7a01c357e9386ed | Triage

Submit
Reports

Overview

overview

Static

static

3

fdfd1e7e43...ed.dll

windows7-x64

fdfd1e7e43...ed.dll

windows10-2004-x64

Sharing

General

Target

fdfd1e7e431f05e01a3c3be9077956b45ab691abbf039cc7e7a01c357e9386ed
Size

127KB
Sample

240424-2ywlzabc3y
MD5

d21332f0a25f7aee899d619fabab9436
SHA1

9aa1624ca70a5d11d2605505d767d79f96767e7f
SHA256

fdfd1e7e431f05e01a3c3be9077956b45ab691abbf039cc7e7a01c357e9386ed
SHA512

d98c658bf1c3d4f590542060dd5c82e1bef3e72d0d053c68ef4a2d460a8380558d1acce5e422c9d2814a35804f455743b613c94c1a7d7a61fd3fba34fedef156
SSDEEP

3072:0jFa0hGJ5yhppWMy7qWrH4CJWA+26begdDywQp3LnnBphm:JMUARQnr6X26fDvMbnB6

Score

10^/10

locky ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fdfd1e7e431f05e01a3c3be9077956b45ab691abbf039cc7e7a01c357e9386ed.dll

Resource

win7-20240220-en

locky ransomware

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

fdfd1e7e431f05e01a3c3be9077956b45ab691abbf039cc7e7a01c357e9386ed.dll

Resource

win10v2004-20240412-en

locky ransomware

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  fdfd1e7e431f05e01a3c3be9077956b45ab691abbf039cc7e7a01c357e9386ed
- Size
  
  127KB
- MD5
  
  d21332f0a25f7aee899d619fabab9436
- SHA1
  
  9aa1624ca70a5d11d2605505d767d79f96767e7f
- SHA256
  
  fdfd1e7e431f05e01a3c3be9077956b45ab691abbf039cc7e7a01c357e9386ed
- SHA512
  
  d98c658bf1c3d4f590542060dd5c82e1bef3e72d0d053c68ef4a2d460a8380558d1acce5e422c9d2814a35804f455743b613c94c1a7d7a61fd3fba34fedef156
- SSDEEP
  
  3072:0jFa0hGJ5yhppWMy7qWrH4CJWA+26begdDywQp3LnnBphm:JMUARQnr6X26fDvMbnB6
Score

10^/10

locky ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Inhibit System Recovery

Defacement

Resource Development

Reconnaissance

Tasks

static1

behavioral1

lockyransomware

behavioral2

lockyransomware

© 2018-2024

Terms | Privacy