locky_lukitus | a098a49fe6c41b6f1e53d4936de1fef1e97f62e8132dab8a4b0a5a96fcb66db7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

6bd26cf5c6...18.exe

windows7-x64

6bd26cf5c6...18.exe

windows10-2004-x64

Sharing

General

Target

6bd26cf5c685f77d039470ae3395cc5d_JaffaCakes118
Size

615KB
Sample

240523-wsj34abd86
MD5

6bd26cf5c685f77d039470ae3395cc5d
SHA1

b63de94717c5cbebc75f05b8baa5c95ea5ae9d0e
SHA256

a098a49fe6c41b6f1e53d4936de1fef1e97f62e8132dab8a4b0a5a96fcb66db7
SHA512

441b3929c14c052b2e97fa4d197e832ce5b07c180948147f19a89fb6a0dfaa7789b6bdd92d86ed66df9ee7d4c110626dccfe129ba9511aa5dfaf4b65011d87ed
SSDEEP

12288:cBRpTa1N85A95xy0pRUU6G4RD4LR0zAo0hKg8H+HIUPwXXp:cVTQ20pC4LazAo7eHIUQ

Score

10^/10

locky_lukitus ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6bd26cf5c685f77d039470ae3395cc5d_JaffaCakes118.exe

Resource

win7-20240419-en

locky_lukitus ransomware

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

6bd26cf5c685f77d039470ae3395cc5d_JaffaCakes118.exe

Resource

win10v2004-20240508-en

locky_lukitus ransomware

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  6bd26cf5c685f77d039470ae3395cc5d_JaffaCakes118
- Size
  
  615KB
- MD5
  
  6bd26cf5c685f77d039470ae3395cc5d
- SHA1
  
  b63de94717c5cbebc75f05b8baa5c95ea5ae9d0e
- SHA256
  
  a098a49fe6c41b6f1e53d4936de1fef1e97f62e8132dab8a4b0a5a96fcb66db7
- SHA512
  
  441b3929c14c052b2e97fa4d197e832ce5b07c180948147f19a89fb6a0dfaa7789b6bdd92d86ed66df9ee7d4c110626dccfe129ba9511aa5dfaf4b65011d87ed
- SSDEEP
  
  12288:cBRpTa1N85A95xy0pRUU6G4RD4LR0zAo0hKg8H+HIUPwXXp:cVTQ20pC4LazAo7eHIUQ
Score

10^/10

locky_lukitus ransomware
- Locky (Lukitus variant)
  Variant of the Locky ransomware seen in the wild since late 2017.
  ransomware locky_lukitus
- Deletes itself
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

locky_lukitusransomware

behavioral2

locky_lukitusransomware

© 2018-2025

Terms | Privacy