LockBit 3.0 Malware Using Weaponized Word Document File To Drop Ransomware
Tags
cmtmf-attack-pattern: Masquerading
country: Taiwan
maec-delivery-vectors: Watering Hole
attack-pattern: Botnet - T1583.005 Botnet - T1584.005 Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Masquerading - T1036 Powershell - T1086 Masquerading
Show in Graph
Common Information
Type Value
UUID e12d2d15-0d84-439b-bb75-8441a1a4297c
Fingerprint 86e42b5feb77aee3
Analysis status DONE
Considered CTI value 0
Text language
Published Nov. 10, 2022, 12:43 p.m.
Added to db Nov. 10, 2022, 3:05 p.m.
Last updated Nov. 18, 2024, 1:38 a.m.
Headline LockBit 3.0 Malware Using Weaponized Word Doc To Drop Ransomware Via Amadey Bot
Title LockBit 3.0 Malware Using Weaponized Word Document File To Drop Ransomware
Detected Hints/Tags/Attributes 31/4/3
Source URLs
Redirection Url
Details Source https://gbhackers.com/lockbit-3-0/
URL Provider
Details Provider Source level domain
Details gbhackers.com gbhackers.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 1209 
powershell.exe
Details File 5 
dd.ps1
Details File 6 
resume.exe