General
-
Target
LCrypt0rX.vbs
-
Size
13KB
-
Sample
241018-hx3t4stdpa
-
MD5
96b15893f986ff2359e84558f7f1f6b4
-
SHA1
899c3499a8b94778ef2d81d8bf4aba60bcc79b69
-
SHA256
035c90d98ca6c9bb1b9033092bdaa6d6ae71140adeef2cf22234f29c98e8ef3f
-
SHA512
159b129eb61f7a426d30c1a095056e9f04f3fe8eb34df86e83b7c32ad20fcd936877b524f8509115b1f461e6238c8eebed43b133421ec216a00084e89e45171a
-
SSDEEP
384:xbplStxYHQHSH7l+ii3qF2ZNvLyyB8dstnH8KlasrC+:XM22r
Static task
static1
Behavioral task
behavioral1
Sample
LCrypt0rX.vbs
Resource
win11-20241007-en
Malware Config
Targets
-
-
Target
LCrypt0rX.vbs
-
Size
13KB
-
MD5
96b15893f986ff2359e84558f7f1f6b4
-
SHA1
899c3499a8b94778ef2d81d8bf4aba60bcc79b69
-
SHA256
035c90d98ca6c9bb1b9033092bdaa6d6ae71140adeef2cf22234f29c98e8ef3f
-
SHA512
159b129eb61f7a426d30c1a095056e9f04f3fe8eb34df86e83b7c32ad20fcd936877b524f8509115b1f461e6238c8eebed43b133421ec216a00084e89e45171a
-
SSDEEP
384:xbplStxYHQHSH7l+ii3qF2ZNvLyyB8dstnH8KlasrC+:XM22r
-
Deletes shadow copies
Ransomware often targets backup files to inhibit system recovery.
-
Blocklisted process makes network request
-
Disables RegEdit via registry modification
-
Sets desktop wallpaper using registry
-