Overview

overview

10

Static

static

3

a1cb6b40b4...18.exe

windows7-x64

10

a1cb6b40b4...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a1cb6b40b49d78103444c32f4f5c1022_JaffaCakes118

  • Size

    590KB

  • Sample

    240612-xbwk8svhnf

  • MD5

    a1cb6b40b49d78103444c32f4f5c1022

  • SHA1

    d911951b10b4c41239f639af8397fefbc9deed12

  • SHA256

    aa36ae501dd09617500a6b38de7917dc5c7313fffb2841bcfdcafa9d567621f0

  • SHA512

    e6b05658f34beff41d7fc13cfb4bd3cff776a24356cce78fb2c29002a4e451a40e019c806c824274fc41248582254320961f07d56b0a4fc38a2fb676045db1e4

  • SSDEEP

    12288:/g2xN5Hef7wWHX+IuNEFVqhJuWYI17c8Z7zo1N9:LN5+f7t3cEFVq5Y0wu7zo

Score
10/10
locky_lukitusransomware

Malware Config

Targets

    • Target

      a1cb6b40b49d78103444c32f4f5c1022_JaffaCakes118

    • Size

      590KB

    • MD5

      a1cb6b40b49d78103444c32f4f5c1022

    • SHA1

      d911951b10b4c41239f639af8397fefbc9deed12

    • SHA256

      aa36ae501dd09617500a6b38de7917dc5c7313fffb2841bcfdcafa9d567621f0

    • SHA512

      e6b05658f34beff41d7fc13cfb4bd3cff776a24356cce78fb2c29002a4e451a40e019c806c824274fc41248582254320961f07d56b0a4fc38a2fb676045db1e4

    • SSDEEP

      12288:/g2xN5Hef7wWHX+IuNEFVqhJuWYI17c8Z7zo1N9:LN5+f7t3cEFVq5Y0wu7zo

    Score
    10/10
    locky_lukitusransomware

    • Locky (Lukitus variant)

      Variant of the Locky ransomware seen in the wild since late 2017.

      ransomwarelocky_lukitus

    • Deletes itself

    • Sets desktop wallpaper using registry

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks