LK Encryption Ransomware - IOC - File Details


1) Ransomware Name - LK Encryption

2) Encrypted Extensions - .locked

3) Ransom Note File -
READ_IT.txt
HELLO_FROM_HACKER.txt
password.txt
Encrypt.exe

4) Encrypted Algorithm - NA

5) Decryptor Link - NA

6) Screenshot -

7) Indicators of Compromise - xxxx://test.langkhach.org:7443/api/encrypt/

8) File Details -
MD5 ef917a988304aaa252e786bb8eb94087
SHA1 98216908dd77523fe2f4b662bfe8aff6e07dbb0e
SHA256 a5369b13c800223a2e17be887ec346ee2f38e26b75171b70deabb12d8c84d45c
ssdeep96: 6fAJy0Mq2VbHjuZHUca / + fzYxqdV55rcqEPj1kibPFpHq7D6fyJ + 5 / vW + xqzNt: OAJyzqF5gWMxqlJcqSj1nbKaX / vWMM
authentihash  d431449ed4781e8983d871db5ef23aaa082d8e3dc849665de4695cab6fa85c2c
imphash  f34d5f2d4577ed6d9ceec516c1f5a744
The size of the file 8.5 KB (8704 bytes)
Win32 EXE file type
DescriptionPE32 executable for MS Windows (console) Intel 80386 Mono / .Net assembly

MD5 5d3f78f2922062ad555386406f29e35f
SHA1 d30341a3cf0c0523ba09592c48e4f4a53be7c61d
SHA256 d84a616c8b3207ddd93140fe5273b2a790c5dc2cce9db38502ef25e2d7bd5af7
ssdeep96: afnZoUbwq8qKJJQNrDxqd155rWqZj1kKXbPFpIgvD6fyo + z1W + / ozNt: uyRqD0JAxqBJWqZj1lXbLm2W + q
authentihash  9b1ba59cd0435dc2f8ce363c1196a54724d2254822cacc9206f503a0543a20b7
imphash  f34d5f2d4577ed6d9ceec516c1f5a744
The size of the file 8.5 KB (8704 bytes)
Win32 EXE file type
DescriptionPE32 executable for MS Windows (console) Intel 80386 Mono / .Net assembly

Comments