Overview

overview

7

Static

static

3

2024-09-19...it.exe

windows7-x64

7

2024-09-19...it.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-09-19_a6eca7beed59c67d7f5a7fc02cdeef64_lockbit

  • Size

    37KB

  • Sample

    240919-g8smvavgnq

  • MD5

    a6eca7beed59c67d7f5a7fc02cdeef64

  • SHA1

    456a894f7bca1d0a8d886923dd340aa8192032ba

  • SHA256

    0ba93d381f12b006b269579ccb56020258f60db32b7e4e868e4a4019aa2f3001

  • SHA512

    64cdeaa8637672c5d6276f14d5b76410c0f5cd6aa94b9f8769818faa4b8ef01a9619bc2963b4c492ea65a096cf869c8041058273e8dcca8f6765fac614794eaf

  • SSDEEP

    768:K0cr3xNg6Aut4bE0nvNS5ZHcWh+UNj07wbLwM6jHBB9D3xfjL2x4xC7g8Qcr6K:tWpAjHIHcO+UNS8GBx3xb6x4l8Qc+K

Score
7/10
defense_evasiondiscovery

Malware Config

Targets

    • Target

      2024-09-19_a6eca7beed59c67d7f5a7fc02cdeef64_lockbit

    • Size

      37KB

    • MD5

      a6eca7beed59c67d7f5a7fc02cdeef64

    • SHA1

      456a894f7bca1d0a8d886923dd340aa8192032ba

    • SHA256

      0ba93d381f12b006b269579ccb56020258f60db32b7e4e868e4a4019aa2f3001

    • SHA512

      64cdeaa8637672c5d6276f14d5b76410c0f5cd6aa94b9f8769818faa4b8ef01a9619bc2963b4c492ea65a096cf869c8041058273e8dcca8f6765fac614794eaf

    • SSDEEP

      768:K0cr3xNg6Aut4bE0nvNS5ZHcWh+UNj07wbLwM6jHBB9D3xfjL2x4xC7g8Qcr6K:tWpAjHIHcO+UNS8GBx3xb6x4l8Qc+K

    Score
    7/10
    defense_evasiondiscovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Impair Defenses: Safe Mode Boot

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks