Malware Analysis Report

2024-10-16 03:21

Sample ID 230601-tr1cksfc44
Target a736269f5f3a9f2e11dd776e352e1801bc28bb699e47876784b8ef761e0062db.bin
SHA256 a736269f5f3a9f2e11dd776e352e1801bc28bb699e47876784b8ef761e0062db
Tags
lockbit blackmatter
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

a736269f5f3a9f2e11dd776e352e1801bc28bb699e47876784b8ef761e0062db

Threat Level: Known bad

The file a736269f5f3a9f2e11dd776e352e1801bc28bb699e47876784b8ef761e0062db.bin was found to be: Known bad.

Malicious Activity Summary

lockbit blackmatter

Blackmatter family

Lockbit family

Rule to detect Lockbit 3.0 ransomware Windows payload

Unsigned PE

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2023-06-01 16:18

Signatures

Blackmatter family

blackmatter

Lockbit family

lockbit

Rule to detect Lockbit 3.0 ransomware Windows payload

Description Indicator Process Target
N/A N/A N/A N/A

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2023-06-01 16:18

Reported

2023-06-01 16:18

Platform

ubuntu1804-amd64-en-20211208

Max time kernel

3s

Command Line

[/tmp/a736269f5f3a9f2e11dd776e352e1801bc28bb699e47876784b8ef761e0062db.exe]

Signatures

N/A

Processes

/tmp/a736269f5f3a9f2e11dd776e352e1801bc28bb699e47876784b8ef761e0062db.exe

[/tmp/a736269f5f3a9f2e11dd776e352e1801bc28bb699e47876784b8ef761e0062db.exe]

Network

N/A

Files

N/A