blackmatter | 6a3abbf02ac8e742aee4381d14cfc0da3969e8c6ce1f22fc9922ad1fed8c080e | Triage

Submit
Reports

Overview

overview

Static

static

2024-01-11...it.exe

windows7-x64

1

2024-01-11...it.exe

windows10-2004-x64

Sharing

General

Target

2024-01-11_7cbb03611ca7bbbd2525291041e55763_darkside_lockbit
Size

469KB
Sample

240112-gq4bmaaae3
MD5

7cbb03611ca7bbbd2525291041e55763
SHA1

68c8370df6392c2a26499bc3c2a0139fe0b39f6f
SHA256

6a3abbf02ac8e742aee4381d14cfc0da3969e8c6ce1f22fc9922ad1fed8c080e
SHA512

4534eae23f3a6f4f21aad0b0a3fe286dba7e579b1ff871f520bec2f31a3d894c890971266dbd854c4aa82dceb6b45e68fd6edf4487186b063382ea299f97b558
SSDEEP

12288:SjBXpdRigM0d4vzFRfaoN1hG98P67PNV3giFH6J1VjR3L6dpbQrQyEpInmwueUfE:Sj9jRlQpBN1hG98P67PNV3giFH6J1VjN

Score

10^/10

blackmatter lockbit ransomware

Static task

static1

lockbit blackmatter

4 signatures

Behavioral task

behavioral1

Sample

2024-01-11_7cbb03611ca7bbbd2525291041e55763_darkside_lockbit.exe

Resource

win7-20231215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-01-11_7cbb03611ca7bbbd2525291041e55763_darkside_lockbit.exe

Resource

win10v2004-20231215-en

blackmatter lockbit ransomware

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

blackmatter

Version

25.239

Targets

- Target
  
  2024-01-11_7cbb03611ca7bbbd2525291041e55763_darkside_lockbit
- Size
  
  469KB
- MD5
  
  7cbb03611ca7bbbd2525291041e55763
- SHA1
  
  68c8370df6392c2a26499bc3c2a0139fe0b39f6f
- SHA256
  
  6a3abbf02ac8e742aee4381d14cfc0da3969e8c6ce1f22fc9922ad1fed8c080e
- SHA512
  
  4534eae23f3a6f4f21aad0b0a3fe286dba7e579b1ff871f520bec2f31a3d894c890971266dbd854c4aa82dceb6b45e68fd6edf4487186b063382ea299f97b558
- SSDEEP
  
  12288:SjBXpdRigM0d4vzFRfaoN1hG98P67PNV3giFH6J1VjR3L6dpbQrQyEpInmwueUfE:Sj9jRlQpBN1hG98P67PNV3giFH6J1VjN
Score

10^/10

blackmatter lockbit ransomware
- BlackMatter Ransomware
  BlackMatter ransomware group claims to be Darkside and REvil succesor.
  ransomware blackmatter
- Lockbit
  Ransomware family with multiple variants released since late 2019.
  ransomware lockbit
- Rule to detect Lockbit 3.0 ransomware Windows payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

lockbitblackmatter

behavioral1

behavioral2

blackmatterlockbitransomware

© 2018-2024

Terms | Privacy