Overview

overview

10

Static

static

10

6371b930d5...0c.exe

windows7-x64

7

6371b930d5...0c.exe

windows10-2004-x64

7

Resubmissions

24-06-2024 13:27

240624-qqbq2sthna 10

06-04-2024 12:50

240406-p2yvaabc36 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6371b930d541e441cb5a9234b327395e05501f3405fb45ef13d9c2dabb6aa40c

  • Size

    145KB

  • Sample

    240624-qqbq2sthna

  • MD5

    c00352e2857075c8f757ea9be769b652

  • SHA1

    2a100aa5902ba6f9f35187117182afabf220071b

  • SHA256

    6371b930d541e441cb5a9234b327395e05501f3405fb45ef13d9c2dabb6aa40c

  • SHA512

    94d7e90ebd6b1d37daa43617a345c463d59096903a55621ff3eb490179411cb7bb58f75bb396a5d2b8720701833dc623ddfb259ad35c0716703a8e4bc66018ad

  • SSDEEP

    3072:m6glyuxE4GsUPnliByocWepbN3/1rtqd:m6gDBGpvEByocWeFN3/F8

Score
10/10
lockbit

Malware Config

Targets

    • Target

      6371b930d541e441cb5a9234b327395e05501f3405fb45ef13d9c2dabb6aa40c

    • Size

      145KB

    • MD5

      c00352e2857075c8f757ea9be769b652

    • SHA1

      2a100aa5902ba6f9f35187117182afabf220071b

    • SHA256

      6371b930d541e441cb5a9234b327395e05501f3405fb45ef13d9c2dabb6aa40c

    • SHA512

      94d7e90ebd6b1d37daa43617a345c463d59096903a55621ff3eb490179411cb7bb58f75bb396a5d2b8720701833dc623ddfb259ad35c0716703a8e4bc66018ad

    • SSDEEP

      3072:m6glyuxE4GsUPnliByocWepbN3/1rtqd:m6gDBGpvEByocWeFN3/F8

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks