locky | d0431537537c9c73f5a1b90b46b560cac4be82feb5ac14d47163a9f4b4fa1a41 | Triage

Sharing

General

Target

91d8ab08a37f9c26a743380677aa200d_JaffaCakes118
Size

91KB
Sample

241124-b3abestlgj
MD5

91d8ab08a37f9c26a743380677aa200d
SHA1

e64e4617c8bdb5c6c3ae30e73d8211400651c8ba
SHA256

d0431537537c9c73f5a1b90b46b560cac4be82feb5ac14d47163a9f4b4fa1a41
SHA512

72d9ef9e26afa70ffe797a79fe3840e6b45d8e4ce863e4ea4eeda5b990f1e692c859addad49fdf7dfb41ad737cee88892caede348bdee13dc98fa5f8f57f7864
SSDEEP

1536:lf0kZhST9p9VTME6Pd+u7RVvGlhRuqeyyD+bNaI+/x8SHO532QhqyIucYqRbwKGc:lflhk9VwZP7RxUKXy/Z8x8oAsucZtz

Score

10^/10

locky discovery ransomware

Malware Config

Targets

- Target
  
  91d8ab08a37f9c26a743380677aa200d_JaffaCakes118
- Size
  
  91KB
- MD5
  
  91d8ab08a37f9c26a743380677aa200d
- SHA1
  
  e64e4617c8bdb5c6c3ae30e73d8211400651c8ba
- SHA256
  
  d0431537537c9c73f5a1b90b46b560cac4be82feb5ac14d47163a9f4b4fa1a41
- SHA512
  
  72d9ef9e26afa70ffe797a79fe3840e6b45d8e4ce863e4ea4eeda5b990f1e692c859addad49fdf7dfb41ad737cee88892caede348bdee13dc98fa5f8f57f7864
- SSDEEP
  
  1536:lf0kZhST9p9VTME6Pd+u7RVvGlhRuqeyyD+bNaI+/x8SHO532QhqyIucYqRbwKGc:lflhk9VwZP7RxUKXy/Z8x8oAsucZtz
Score

10^/10

locky discovery ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Locky family
  locky
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lockydiscoveryransomware

behavioral2

lockydiscoveryransomware