locky_lukitus | 73cd7a019317b2cabbe269e5afc88b1fcd0508797a7eef4e9f9d3cdc1840fb4d | Triage

Submit
Reports

Overview

overview

Static

static

3

683cf9bccc...18.exe

windows7-x64

683cf9bccc...18.exe

windows10-2004-x64

Sharing

General

Target

683cf9bccccf3ab30d8655e0fc3996f6_JaffaCakes118
Size

615KB
Sample

240522-xb4lvacd99
MD5

683cf9bccccf3ab30d8655e0fc3996f6
SHA1

cce97b2446f962df6df17785bcbae3d8283cf523
SHA256

73cd7a019317b2cabbe269e5afc88b1fcd0508797a7eef4e9f9d3cdc1840fb4d
SHA512

4d7a45db319a9e3f5fe14720b9bf2079a128167e5bdbd7ea19a2b5649b215c89076a1fb3a7ff51fdad327702001c02e24add3f2e85ec977140d883b663a88135
SSDEEP

12288:HBRpTekU9TDkYwXkqqem+1tom7OxiWwHI1DRJ5hTBH41CXYXHSe2:HVTLUJQua2wo1DRJX1shHF

Score

10^/10

locky_lukitus ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

683cf9bccccf3ab30d8655e0fc3996f6_JaffaCakes118.exe

Resource

win7-20240508-en

locky_lukitus ransomware

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

683cf9bccccf3ab30d8655e0fc3996f6_JaffaCakes118.exe

Resource

win10v2004-20240508-en

locky_lukitus ransomware

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  683cf9bccccf3ab30d8655e0fc3996f6_JaffaCakes118
- Size
  
  615KB
- MD5
  
  683cf9bccccf3ab30d8655e0fc3996f6
- SHA1
  
  cce97b2446f962df6df17785bcbae3d8283cf523
- SHA256
  
  73cd7a019317b2cabbe269e5afc88b1fcd0508797a7eef4e9f9d3cdc1840fb4d
- SHA512
  
  4d7a45db319a9e3f5fe14720b9bf2079a128167e5bdbd7ea19a2b5649b215c89076a1fb3a7ff51fdad327702001c02e24add3f2e85ec977140d883b663a88135
- SSDEEP
  
  12288:HBRpTekU9TDkYwXkqqem+1tom7OxiWwHI1DRJ5hTBH41CXYXHSe2:HVTLUJQua2wo1DRJX1shHF
Score

10^/10

locky_lukitus ransomware
- Locky (Lukitus variant)
  Variant of the Locky ransomware seen in the wild since late 2017.
  ransomware locky_lukitus
- Deletes itself
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

locky_lukitusransomware

behavioral2

locky_lukitusransomware

© 2018-2024

Terms | Privacy