locky | d905b57d7913430f33e03ab345a0d10f8d64b2132622de69905e631aa74ec9cb | Triage

Submit
Reports

Overview

overview

Static

static

3

4702bb7019...18.exe

windows7-x64

4702bb7019...18.exe

windows10-2004-x64

Sharing

General

Target

4702bb70196fe10d61993bfe8f54da76_JaffaCakes118
Size

395KB
Sample

240515-twvb5ahf52
MD5

4702bb70196fe10d61993bfe8f54da76
SHA1

e546e0859edfeaae9a516d57a1b934c75bcb74b9
SHA256

d905b57d7913430f33e03ab345a0d10f8d64b2132622de69905e631aa74ec9cb
SHA512

1634cdc2c2f8971f48369af01f70aaa45aff00d5f1e9f6d5009e998fb7d257b242ccc3dfca91ac677bcef07577c0ece30dec3d77bad68b39128103ca6d948d22
SSDEEP

6144:VG4GadNgCZtHYi7S82RRxysGFH4Rexnkqn1DPVGN:A4fdNjtHYXHlGV4arn1D

Score

10^/10

locky locky_osiris ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4702bb70196fe10d61993bfe8f54da76_JaffaCakes118.exe

Resource

win7-20240508-en

locky locky_osiris ransomware

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

4702bb70196fe10d61993bfe8f54da76_JaffaCakes118.exe

Resource

win10v2004-20240508-en

locky locky_osiris ransomware

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  4702bb70196fe10d61993bfe8f54da76_JaffaCakes118
- Size
  
  395KB
- MD5
  
  4702bb70196fe10d61993bfe8f54da76
- SHA1
  
  e546e0859edfeaae9a516d57a1b934c75bcb74b9
- SHA256
  
  d905b57d7913430f33e03ab345a0d10f8d64b2132622de69905e631aa74ec9cb
- SHA512
  
  1634cdc2c2f8971f48369af01f70aaa45aff00d5f1e9f6d5009e998fb7d257b242ccc3dfca91ac677bcef07577c0ece30dec3d77bad68b39128103ca6d948d22
- SSDEEP
  
  6144:VG4GadNgCZtHYi7S82RRxysGFH4Rexnkqn1DPVGN:A4fdNjtHYXHlGV4arn1D
Score

10^/10

locky locky_osiris ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Locky (Osiris variant)
  Variant of the Locky ransomware seen in the wild since early 2017.
  ransomware locky_osiris
- Deletes itself
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Defacement

Resource Development

Reconnaissance

Tasks

static1

behavioral1

lockylocky_osirisransomware

behavioral2

lockylocky_osirisransomware

© 2018-2024

Terms | Privacy