f6a03a9d68e26460cc21634b35ce85f075b149a28fbcf1545cb81700bdd166e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-10_3b4d2de3486ad5b03071e8d70ce8da01_lockbit
Size

84KB
Sample

241010-ctwnqs1ajq
MD5

3b4d2de3486ad5b03071e8d70ce8da01
SHA1

3919462313d2b18ace72ca6589770fb839199f10
SHA256

f6a03a9d68e26460cc21634b35ce85f075b149a28fbcf1545cb81700bdd166e6
SHA512

5da6d3a181e800cbf4eee3879398f6cd2f3fc27a0239ccefd4e54c9401690f85ad63a2c8247f55b75f0883d96c09e478a5f7345170a5aa220d73c8e45540828d
SSDEEP

1536:PgxAxuW2ldyYvhauBSx40480jAbeHZrQKfAx:mAxuW+dDvUuBSx40480AeHdn4x

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  2024-10-10_3b4d2de3486ad5b03071e8d70ce8da01_lockbit
- Size
  
  84KB
- MD5
  
  3b4d2de3486ad5b03071e8d70ce8da01
- SHA1
  
  3919462313d2b18ace72ca6589770fb839199f10
- SHA256
  
  f6a03a9d68e26460cc21634b35ce85f075b149a28fbcf1545cb81700bdd166e6
- SHA512
  
  5da6d3a181e800cbf4eee3879398f6cd2f3fc27a0239ccefd4e54c9401690f85ad63a2c8247f55b75f0883d96c09e478a5f7345170a5aa220d73c8e45540828d
- SSDEEP
  
  1536:PgxAxuW2ldyYvhauBSx40480jAbeHZrQKfAx:mAxuW+dDvUuBSx40480AeHdn4x
Score

7^/10

defense_evasion discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery