locky | 8a034c4b01d34bdd3aa03eca78c273837814092810f765dd5e909892579a929c | Triage

Submit
Reports

Overview

overview

Static

static

3

844555caf1...SA.exe

windows7-x64

844555caf1...SA.exe

windows10-2004-x64

Sharing

General

Target

844555caf160300f82e2bd08a3ee84aac093f40f7223177ef89f1f2bb55761cc.CR.IA.SA.OA
Size

478KB
Sample

240606-f4gjcaad38
MD5

8544bf5623553a7bc20257448627a91f
SHA1

bcc403ce64a5c7c3e195db776ba66f48f4746337
SHA256

8a034c4b01d34bdd3aa03eca78c273837814092810f765dd5e909892579a929c
SHA512

69cce231cc3c96c3c805b948eeee8f6bc46caa0ca47bfa94689cf704f3aca318cad615a257bc03701c6ae38712c83d3d9ebcef2b4c4621fe176536840d587a52
SSDEEP

12288:KxvXqjpRbxF8ZshB4dq4yfndmLhCiQ78ZhZ7U:copRbxphIemd

Score

10^/10

locky ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

844555caf160300f82e2bd08a3ee84aac093f40f7223177ef89f1f2bb55761cc.CR.IA.SA.exe

Resource

win7-20240508-en

locky ransomware

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

844555caf160300f82e2bd08a3ee84aac093f40f7223177ef89f1f2bb55761cc.CR.IA.SA.exe

Resource

win10v2004-20240508-en

locky ransomware

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  844555caf160300f82e2bd08a3ee84aac093f40f7223177ef89f1f2bb55761cc.CR.IA.SA.OA
- Size
  
  478KB
- MD5
  
  8544bf5623553a7bc20257448627a91f
- SHA1
  
  bcc403ce64a5c7c3e195db776ba66f48f4746337
- SHA256
  
  8a034c4b01d34bdd3aa03eca78c273837814092810f765dd5e909892579a929c
- SHA512
  
  69cce231cc3c96c3c805b948eeee8f6bc46caa0ca47bfa94689cf704f3aca318cad615a257bc03701c6ae38712c83d3d9ebcef2b4c4621fe176536840d587a52
- SSDEEP
  
  12288:KxvXqjpRbxF8ZshB4dq4yfndmLhCiQ78ZhZ7U:copRbxphIemd
Score

10^/10

locky ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Deletes itself
- Sets desktop wallpaper using registry
  ransomware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

lockyransomware

behavioral2

lockyransomware

© 2018-2025

Terms | Privacy