3bf1f5ed6e34ef9cf05ce2f86150c561fce51997e83587a19ba81639f56af597 | Triage

Sharing

General

Target

2024-09-14_6d13fba98c6cee96d4c6086124101f89_lockbit
Size

32KB
Sample

240914-sr53ds1emf
MD5

6d13fba98c6cee96d4c6086124101f89
SHA1

efa1b9af5eb6767a2c28abdd1b564a975100e92b
SHA256

3bf1f5ed6e34ef9cf05ce2f86150c561fce51997e83587a19ba81639f56af597
SHA512

26e6b6f930c4a85f1dd71a833750f1cc95c974fe7bc171e853436d44b15abfabcddbe2670577774090887a8bf858c28d847ca36e175066b4969139594e09f71a
SSDEEP

768:7FOj0Pkj5ModZ4h2wd8iGjqW7AnHvtMaWRBB5sx4PC74801wGt:JHE5Mod2kwd8L4qa4Bax40480ht

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  2024-09-14_6d13fba98c6cee96d4c6086124101f89_lockbit
- Size
  
  32KB
- MD5
  
  6d13fba98c6cee96d4c6086124101f89
- SHA1
  
  efa1b9af5eb6767a2c28abdd1b564a975100e92b
- SHA256
  
  3bf1f5ed6e34ef9cf05ce2f86150c561fce51997e83587a19ba81639f56af597
- SHA512
  
  26e6b6f930c4a85f1dd71a833750f1cc95c974fe7bc171e853436d44b15abfabcddbe2670577774090887a8bf858c28d847ca36e175066b4969139594e09f71a
- SSDEEP
  
  768:7FOj0Pkj5ModZ4h2wd8iGjqW7AnHvtMaWRBB5sx4PC74801wGt:JHE5Mod2kwd8L4qa4Bax40480ht
Score

7^/10

defense_evasion discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery