General

  • Target

    svchost.exe

  • Size

    145KB

  • MD5

    5d0e0d8c39cd3e9cd530a226eb859020

  • SHA1

    8eb4534f812e5ef719eccd5b5bbc3cea0c86d01a

  • SHA256

    a71031f0dab50af58606e40c45a469d98a226ab53ede2d950da6445874b4bd12

  • SHA512

    c50bcc77befb2abd9190fd25a7e12370a88b461cf8ec3208d65f37a74f6d4a09293086eaf361e4a55dc58ba47155306fb851af1bb8f3ca21aa5187d30529d29b

  • SSDEEP

    1536:izICS4AAwczUUf8y8gvMH+1zGSNAojMP95D1xD5bwnHm/1BviIdU/IqbNLu75RjJ:hqJogYkcSNm9V7D50nH2viI2xadRj1T

Score
10/10

Malware Config

Signatures

  • Lockbit family
  • Rule to detect Lockbit 3.0 ransomware Windows payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • svchost.exe
    .exe windows:5 windows x86 arch:x86

    914685b69f2ac2ff61b6b0f1883a054d


    Headers

    Imports

    Sections