locky | d4ff4b73d7e89f80d78239a349c0197022c9d9306e5b59fdb71894040bc36489 | Triage

Sharing

General

Target

f809f03e81cfaddcf44c51c4f19e239a_JaffaCakes118
Size

220KB
Sample

241216-jsdvvs1nbz
MD5

f809f03e81cfaddcf44c51c4f19e239a
SHA1

ff9790d7902fea4c910b182f6e0b00221a40d616
SHA256

d4ff4b73d7e89f80d78239a349c0197022c9d9306e5b59fdb71894040bc36489
SHA512

59fff00baf8db70dea58ab1815b0e964e7b6a0470e8f13ad81b80f5c19b3162381333d4921d43e7c99e452cf3987bbfc860564f0c473ef5f65c4ebe48b1a016e
SSDEEP

6144:P2qQCUNQcAjmFRZYfuiCmytcpJuEp2Yi3S:PWQcAejYfugymWEp2NS

Score

10^/10

locky discovery ransomware

Malware Config

Targets

- Target
  
  f809f03e81cfaddcf44c51c4f19e239a_JaffaCakes118
- Size
  
  220KB
- MD5
  
  f809f03e81cfaddcf44c51c4f19e239a
- SHA1
  
  ff9790d7902fea4c910b182f6e0b00221a40d616
- SHA256
  
  d4ff4b73d7e89f80d78239a349c0197022c9d9306e5b59fdb71894040bc36489
- SHA512
  
  59fff00baf8db70dea58ab1815b0e964e7b6a0470e8f13ad81b80f5c19b3162381333d4921d43e7c99e452cf3987bbfc860564f0c473ef5f65c4ebe48b1a016e
- SSDEEP
  
  6144:P2qQCUNQcAjmFRZYfuiCmytcpJuEp2Yi3S:PWQcAejYfugymWEp2NS
Score

10^/10

locky discovery ransomware
- Locky
  Ransomware strain released in 2016, with advanced features like anti-analysis.
  ransomware locky
- Locky family
  locky
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lockydiscoveryransomware

behavioral2

lockydiscoveryransomware