General

  • Target

    LockBit-Black-Builder-main (1).zip

  • Size

    2.6MB

  • MD5

    a5fbe0c5d0b5abd4dd0cb3bf69f3be6b

  • SHA1

    fcc36b7c657a9187572ad3f527992b33c560f2e3

  • SHA256

    34ae59b7acc09c2e82625640cae82c5158b649db1418ddbaa24138b51f1722c5

  • SHA512

    a10b15c4368bbb836643d534a2c732c794bdac1034ca7c088ebd7c5333969763eea5be30977e6dd6b039e051e4b36acfef6fbb5129009d5bfd1eb75d706c7cdb

  • SSDEEP

    49152:RXO172+O52uX9HaMAvqjw+6vfdTZseFqnC/6qZoAws4vxF8:Rp+OEuwy6ZDX/6woAws45C

Score
10/10

Malware Config

Extracted

Family

blackmatter

Version

25.239

Extracted

Family

blackmatter

Version

65.239

Signatures

  • Blackmatter family
  • Lockbit family
  • Rule to detect Lockbit 3.0 ransomware Windows payload 8 IoCs
  • Unsigned PE 16 IoCs

    Checks for missing Authenticode signature.

Files

  • LockBit-Black-Builder-main (1).zip
    .zip
  • LockBit-Black-Builder-main/B318F37E-49C8-4F61-B0F3-6FC2A76E39C9.jpeg
    .jpg
  • LockBit-Black-Builder-main/CC9FCD28-984A-4582-ADEB-929A010AE91B.png
    .png
  • LockBit-Black-Builder-main/LICENSE
  • LockBit-Black-Builder-main/LockBit30/Build.bat
  • LockBit-Black-Builder-main/LockBit30/Build/DECRYPTION_ID.txt
  • LockBit-Black-Builder-main/LockBit30/Build/LB3.exe
    .exe windows:5 windows x86 arch:x86

    914685b69f2ac2ff61b6b0f1883a054d


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit30/Build/LB3Decryptor.exe
    .exe windows:5 windows x86 arch:x86

    4585cfc85e0cd554d6b5d4bf1bb3d5e4


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit30/Build/LB3_ReflectiveDll_DllMain.dll
    .dll windows:5 windows x86 arch:x86

    07530c85f3bf8d18d55bc566a43ea905


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit30/Build/LB3_Rundll32.dll
    .dll windows:5 windows x86 arch:x86

    d5feac3e94d92e4c2e9fe14f1f783fd7


    Headers

    Imports

    Exports

    Sections

  • LockBit-Black-Builder-main/LockBit30/Build/LB3_Rundll32_pass.dll
    .dll windows:5 windows x86 arch:x86

    d5feac3e94d92e4c2e9fe14f1f783fd7


    Headers

    Imports

    Exports

    Sections

  • LockBit-Black-Builder-main/LockBit30/Build/LB3_pass.exe
    .exe windows:5 windows x86 arch:x86

    914685b69f2ac2ff61b6b0f1883a054d


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit30/Build/Password_dll.txt
  • LockBit-Black-Builder-main/LockBit30/Build/Password_exe.txt
  • LockBit-Black-Builder-main/LockBit30/Build/priv.key
  • LockBit-Black-Builder-main/LockBit30/Build/pub.key
  • LockBit-Black-Builder-main/LockBit30/builder.exe
    .exe windows:5 windows x86 arch:x86

    d2e26e45dcb84f1062f90f29a9cf0faa


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit30/config.json
  • LockBit-Black-Builder-main/LockBit30/keygen.exe
    .exe windows:5 windows x86 arch:x86

    73eeda700d0a0376845c61c44155f4a8


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit3Builder/Build.bat
  • LockBit-Black-Builder-main/LockBit3Builder/Build/DECRYPTION_ID.txt
  • LockBit-Black-Builder-main/LockBit3Builder/Build/LB3.exe
    .exe windows:5 windows x86 arch:x86

    41fb8cb2943df6de998b35a9d28668e8


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit3Builder/Build/LB3Decryptor.exe
    .exe windows:5 windows x86 arch:x86

    4585cfc85e0cd554d6b5d4bf1bb3d5e4


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit3Builder/Build/LB3_ReflectiveDll_DllMain.dll
    .dll windows:5 windows x86 arch:x86

    b1826e7d9522633dc1f4953f25424ce3


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit3Builder/Build/LB3_Rundll32.dll
    .dll windows:5 windows x86 arch:x86

    b750c147c0bcc8b349e4f1143ac1432e


    Headers

    Imports

    Exports

    Sections

  • LockBit-Black-Builder-main/LockBit3Builder/Build/LB3_Rundll32_pass.dll
    .dll windows:5 windows x86 arch:x86

    b750c147c0bcc8b349e4f1143ac1432e


    Headers

    Imports

    Exports

    Sections

  • LockBit-Black-Builder-main/LockBit3Builder/Build/LB3_pass.exe
    .exe windows:5 windows x86 arch:x86

    41fb8cb2943df6de998b35a9d28668e8


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit3Builder/Build/Password_dll.txt
  • LockBit-Black-Builder-main/LockBit3Builder/Build/Password_exe.txt
  • LockBit-Black-Builder-main/LockBit3Builder/Build/priv.key
  • LockBit-Black-Builder-main/LockBit3Builder/Build/pub.key
  • LockBit-Black-Builder-main/LockBit3Builder/builder.exe
    .exe windows:5 windows x86 arch:x86

    d2e26e45dcb84f1062f90f29a9cf0faa


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/LockBit3Builder/config.json
  • LockBit-Black-Builder-main/LockBit3Builder/keygen.exe
    .exe windows:5 windows x86 arch:x86

    73eeda700d0a0376845c61c44155f4a8


    Headers

    Imports

    Sections

  • LockBit-Black-Builder-main/README.md
  • LockBit-Black-Builder-main/Screenshot_20220921-210605_Samsung Internet.jpg
    .jpg
  • LockBit-Black-Builder-main/Screenshot_20220921-210644_Samsung Internet.jpg
    .jpg
  • LockBit-Black-Builder-main/Screenshot_20220921-210706_Samsung Internet.jpg
    .jpg
  • LockBit-Black-Builder-main/Screenshot_20220921-211415_Twitter.jpg
    .jpg