Overview

overview

5

Static

static

3

locky-31.exe

windows7-x64

1

locky-31.exe

windows10-2004-x64

1

locky-31.5.exe

windows7-x64

5

locky-31.5.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bbbb59dec8109fd8a35e80834bbcaef0_JaffaCakes118

  • Size

    221KB

  • Sample

    240618-nsa67awdmk

  • MD5

    bbbb59dec8109fd8a35e80834bbcaef0

  • SHA1

    603117e314a8240d0b14697e93eb69bb105418f2

  • SHA256

    71c448587effc005359071cf69be34bba650e7f99535930a2c55f867188ed833

  • SHA512

    002be9d07241c79e0b24df5089673e650c823620ef7ed152917d7d0df15d926ff99e5fe7b71f220cfbf0c6d4d8e77c120f055a7d5467312a4ac0f183605c1b33

  • SSDEEP

    6144:zqKTcFckHorxSZ7DdcvMddXjZr1R38Fp0n8Vtobx:zTc6kirvOjZ1pwpZybx

Score
5/10

Malware Config

Targets

    • Target

      locky-31.5-unpacked

    • Size

      126KB

    • MD5

      5618d51f9076dc4fdbcf8c79ea732d12

    • SHA1

      8ad7fa305ed650f9a918d67e3635ff362b24a7ba

    • SHA256

      d7e1ef3a9f2d614c139ea0c9d1291b9cf6bb6df2a45a998167a2c36f6bbc05c0

    • SHA512

      27a22419df02bdb2fcd181e9ef60e1288cf92858686d7a890c22581efec21a3db39f6e8e24a95d3a1f35c4da486f31b2fd069972d3a8ba4b24c9e1cb7c3e089d

    • SSDEEP

      3072:ndi+hQXeO6oqRtfdodI6yn3g8tQckHwxw6:ndDhQX8RSdzc3gJcYwK

    Score
    1/10
    behavioral1behavioral2

    • Target

      locky-31.5.bin

    • Size

      191KB

    • MD5

      148dc5f342462f056f214896c3ece162

    • SHA1

      ae463dce3a66e5d668d71d5b6e68bc2c81eac623

    • SHA256

      0c357e3d47167b7370ce5578bb25c4f1c8b1cd87dbd398ecc07bccdac5087aa1

    • SHA512

      86bed4fd43964cdd699e9c37a3db929c3863b7e3874909708c843c0291b3358ec0ea0c0255b87ce59c9ee09031256ac4c64d6bfdcabbe242c98a811770314899

    • SSDEEP

      3072:hRzGicKjPc1MZV+U76+QhXqD7VIADAQcFkBkHoB80xWZ7VVdcvAD/VQbwb2Y:zaicKLc4dWX+qKTcFqkHorxWZ7Ddcve/

    Score
    5/10

    • Suspicious use of SetThreadContext

    behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks