locky_lukitus | ce91d20c7f9e548ba5cf56e84cf8e535566bdaf6dd319d948988e3246d7f6644 | Triage

Submit
Reports

Overview

overview

Static

static

3

2024-05-30...ky.exe

windows7-x64

2024-05-30...ky.exe

windows10-2004-x64

Sharing

General

Target

2024-05-30_7619daf0a58c873caa3790bc66f84204_locky
Size

517KB
Sample

240530-awr28afg5x
MD5

7619daf0a58c873caa3790bc66f84204
SHA1

1feb1683d1b149601d2036b41ed36fd9c9d88f6d
SHA256

ce91d20c7f9e548ba5cf56e84cf8e535566bdaf6dd319d948988e3246d7f6644
SHA512

2326dbe762b73cd83bbf0e8964ae9d7836686b5127b4d7d2064936ca81f2906d58e645b3928801b50ae3a86167a131a8b90d5d9c2ef8e0871bf150fcf4995508
SSDEEP

12288:uVRm47ugq9QLXzNWVn4Fkl6BQ2yLhxPtIS4GudgBXllbXtdj:uVzzzjNO4FkUQ2yL7PtIdGudqlb9dj

Score

10^/10

locky_lukitus ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-05-30_7619daf0a58c873caa3790bc66f84204_locky.exe

Resource

win7-20240221-en

locky_lukitus ransomware

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-30_7619daf0a58c873caa3790bc66f84204_locky.exe

Resource

win10v2004-20240426-en

locky_lukitus ransomware

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-30_7619daf0a58c873caa3790bc66f84204_locky
- Size
  
  517KB
- MD5
  
  7619daf0a58c873caa3790bc66f84204
- SHA1
  
  1feb1683d1b149601d2036b41ed36fd9c9d88f6d
- SHA256
  
  ce91d20c7f9e548ba5cf56e84cf8e535566bdaf6dd319d948988e3246d7f6644
- SHA512
  
  2326dbe762b73cd83bbf0e8964ae9d7836686b5127b4d7d2064936ca81f2906d58e645b3928801b50ae3a86167a131a8b90d5d9c2ef8e0871bf150fcf4995508
- SSDEEP
  
  12288:uVRm47ugq9QLXzNWVn4Fkl6BQ2yLhxPtIS4GudgBXllbXtdj:uVzzzjNO4FkUQ2yL7PtIdGudqlb9dj
Score

10^/10

locky_lukitus ransomware
- Locky (Lukitus variant)
  Variant of the Locky ransomware seen in the wild since late 2017.
  ransomware locky_lukitus
- Deletes itself
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

locky_lukitusransomware

behavioral2

locky_lukitusransomware

© 2018-2024

Terms | Privacy