General

  • Target

    08642599.bin

  • Size

    469KB

  • MD5

    c2bc344f6dde0573ea9acdfb6698bf4c

  • SHA1

    d6ae7dc2462c8c35c4a074b0a62f07cfef873c77

  • SHA256

    a736269f5f3a9f2e11dd776e352e1801bc28bb699e47876784b8ef761e0062db

  • SHA512

    d60cf86c0267cd4e88d21768665bbb43f3048dace1e0013b2361c5bfabf2656ff6215dfb75b6932e09545473305b4f707c069721cdde317b1df1709cd9fc61c0

  • SSDEEP

    12288:CzVXpdg/1MB94JD7RfaVT1hG98P67PNV3giFH6J1VjR3L6dpbQrQyEpInmwuRUfB:CzxjgdRpBq1hG98P67PNV3giFH6J1Vjn

Score
10/10

Malware Config

Extracted

Family

blackmatter

Version

25.239

Signatures

  • Blackmatter family
  • Lockbit family
  • Rule to detect Lockbit 3.0 ransomware Windows payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 08642599.bin
    .exe windows x86

    d2e26e45dcb84f1062f90f29a9cf0faa


    Headers

    Imports

    Sections