locky | 2fd6e890d882a29f4cfadc123f8016e584a864aba3c1166dfc0fea4f37a66fd8 | Triage

Submit
Reports

Overview

overview

Static

static

3

9533202d7c...18.exe

windows7-x64

9533202d7c...18.exe

windows10-2004-x64

Sharing

General

Target

9533202d7c1075d12f1a900cf8c950c5_JaffaCakes118
Size

364KB
Sample

240604-rw5fzsad3z
MD5

9533202d7c1075d12f1a900cf8c950c5
SHA1

cd23d34033b14515a084bc2b4870c11cacde0f15
SHA256

2fd6e890d882a29f4cfadc123f8016e584a864aba3c1166dfc0fea4f37a66fd8
SHA512

f76108c1014882ea2671cf91755645af6a33f835bae597ecab6d81b02b564501b1380142f5cb8b638ae6751845d930bce69696b13849be88b9676805894071c1
SSDEEP

6144:1zGwKmwzQoBnpA2cQJ4R1Y9+sSj22UJre6OmLFrHXvu9dEP8vWy0oB1wO5Vzt4:VKmwzQoBnpAkJ4R1Y9+nrKZJFrH8dvvC

Score

10^/10

locky locky_osiris ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9533202d7c1075d12f1a900cf8c950c5_JaffaCakes118.exe

Resource

win7-20240221-en

locky locky_osiris ransomware

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

9533202d7c1075d12f1a900cf8c950c5_JaffaCakes118.exe

Resource

win10v2004-20240508-en

locky locky_osiris ransomware

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  9533202d7c1075d12f1a900cf8c950c5_JaffaCakes118
- Size
  
  364KB
- MD5
  
  9533202d7c1075d12f1a900cf8c950c5
- SHA1
  
  cd23d34033b14515a084bc2b4870c11cacde0f15
- SHA256
  
  2fd6e890d882a29f4cfadc123f8016e584a864aba3c1166dfc0fea4f37a66fd8
- SHA512
  
  f76108c1014882ea2671cf91755645af6a33f835bae597ecab6d81b02b564501b1380142f5cb8b638ae6751845d930bce69696b13849be88b9676805894071c1
- SSDEEP
  
  6144:1zGwKmwzQoBnpA2cQJ4R1Y9+sSj22UJre6OmLFrHXvu9dEP8vWy0oB1wO5Vzt4:VKmwzQoBnpAkJ4R1Y9+nrKZJFrH8dvvC
Score

10^/10

locky locky_osiris ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Locky (Osiris variant)
  Variant of the Locky ransomware seen in the wild since early 2017.
  ransomware locky_osiris
- Deletes itself
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

lockylocky_osirisransomware

behavioral2

lockylocky_osirisransomware

© 2018-2025

Terms | Privacy