← Back to Pulse Feed
PULSE DETAIL
LockBit 3.0 is a ransomware malware that was first seen in June 2022 and has since become a significant cybersecurity threat to organizations worldwide. It uses a hybrid encryption approach with AES and RSA encryption algorithms and is known for its complexity and evasiveness. LockBit 3.0 is being used by multiple ransomware threat actor groups, including the LockBit gang, which has been behind numerous attacks and is now accepting Zcash for payments.
MITRE ATT&CK & Malware Families
MALWARE FAMILIES
Ransom:Win32/LockBit
Indicators of Compromise (222)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| URL | http://ww25.premiumize.com/?subid1=20230317-0430-503a-83b1-1bf8136db58b | — | 2023-08-01 | |
| FileHash-MD5 | 0b5c5a930c0d940bfcbfe3d9eb4d0af3 | MD5 of d65225dc56d8ff0ea2205829c21b5803fcb03dc57a7e9da5062cbd74e1a6b7d6 | 2023-08-01 | |
| FileHash-MD5 | 294e9f64cb1642dd89229fff0592856b | MD5 of 917e115cc403e29b4388e0d175cbfac3e7e40ca1742299fbdb353847db2de7c2 | 2023-08-01 | |
| FileHash-MD5 | 587b8d79c9a8c8ddbb9fd0003e5de340 | MD5 of eda0328bfd45d85f4db5dbb4340f38692175a063b7321b49b2c8ebae3ab2868c | 2023-08-01 | |
| FileHash-MD5 | 6bb06ab176ae723bc901126f59e9243d | MD5 of de052ce06fea7ae3d711654bc182d765a3f440d2630e700e642811c89491df72 | 2023-08-01 | |
| FileHash-MD5 | 6dc27523eb048bb7197bfdf39d6d15dd | MD5 of 01b09b554c30675cc83d4b087b31f980ba14e9143d387954df484894115f82d4 | 2023-08-01 | |
| FileHash-MD5 | 8166f74a4c771ba8c6c39bc20be963c1 | MD5 of e5d65e826b5379ca47a371505678bca6071f2538f98b5fef9e33b45da9c06206 | 2023-08-01 | |
| FileHash-MD5 | b6dedc7d42b6def2562064be6c5fc986 | MD5 of 4dc407b28474c0b90f0c5173de5c4f1082c827864f045c4571890d967eadd880 | 2023-08-01 | |
| FileHash-MD5 | c02b805c725eb68f7bddd95aeaab41b1 | MD5 of 7eabd3ba288284403a9e041a82478d4b6490bc4b333d839cc73fa665b211982c | 2023-08-01 | |
| FileHash-MD5 | cd3900acd800ff0a0c988477b8bdc610 | MD5 of d259be8dc016d8a2d9b89dbd7106e22a1df2164d84f80986baba5e9a51ed4a65 | 2023-08-01 | |
| FileHash-MD5 | d5854b99391a49d6dd0f35b9adcc0fae | MD5 of 33468dfd84a2959acebb97c26fdc31ab7185045c18b383ce9cc662b6932e9a48 | 2023-08-01 | |
| FileHash-MD5 | f56b9eb59cd0ecca55f1041b0c36e0c0 | MD5 of c33e56318e574c97521d14d68d24b882ffb0ed65d96203970b482d8b2c332351 | 2023-08-01 | |
| FileHash-SHA1 | 13cf1dc11a066e9d4953b8fd19cffe01c60c763e | SHA1 of de052ce06fea7ae3d711654bc182d765a3f440d2630e700e642811c89491df72 | 2023-08-01 | |
| FileHash-SHA1 | 165637b432b0f4883025a1eacd5d52f14b382470 | SHA1 of 7eabd3ba288284403a9e041a82478d4b6490bc4b333d839cc73fa665b211982c | 2023-08-01 | |
| FileHash-SHA1 | 2d75bee8ae5138f904d3825a7a399038a5dedeaa | SHA1 of d259be8dc016d8a2d9b89dbd7106e22a1df2164d84f80986baba5e9a51ed4a65 | 2023-08-01 | |
| FileHash-SHA1 | 47e9e914c45e12453dff8439e68ceee9808f155a | SHA1 of eda0328bfd45d85f4db5dbb4340f38692175a063b7321b49b2c8ebae3ab2868c | 2023-08-01 | |
| FileHash-SHA1 | 5503f0eac6b16671ff1e2a6f0952b01e4147a2a3 | SHA1 of 33468dfd84a2959acebb97c26fdc31ab7185045c18b383ce9cc662b6932e9a48 | 2023-08-01 | |
| FileHash-SHA1 | 586196ff024b0abe2f92601c73b59c9631900f45 | SHA1 of 01b09b554c30675cc83d4b087b31f980ba14e9143d387954df484894115f82d4 | 2023-08-01 | |
| FileHash-SHA1 | 5e3cbb4aaf6c8dc622f2e0157c079761750b0bb7 | SHA1 of e5d65e826b5379ca47a371505678bca6071f2538f98b5fef9e33b45da9c06206 | 2023-08-01 | |
| FileHash-SHA1 | 65ff892da4b76461c036e396c7018438fb2be80a | SHA1 of d65225dc56d8ff0ea2205829c21b5803fcb03dc57a7e9da5062cbd74e1a6b7d6 | 2023-08-01 | |
| FileHash-SHA1 | 97b148c27f3da29ba7b18d6aee8a0db9102f47c9 | SHA1 of 917e115cc403e29b4388e0d175cbfac3e7e40ca1742299fbdb353847db2de7c2 | 2023-08-01 | |
| FileHash-SHA1 | c6edb824ba70a996680784a503a4a6c1241b9da3 | SHA1 of 4dc407b28474c0b90f0c5173de5c4f1082c827864f045c4571890d967eadd880 | 2023-08-01 | |
| FileHash-SHA1 | db0a70ae01257702bc438e983e73b549b08cb3d4 | SHA1 of c33e56318e574c97521d14d68d24b882ffb0ed65d96203970b482d8b2c332351 | 2023-08-01 | |
| FileHash-SHA256 | 01b09b554c30675cc83d4b087b31f980ba14e9143d387954df484894115f82d4 | — | 2023-08-01 | |
| FileHash-SHA256 | 32e815ef045a0975be2372b85449b25bd7a7c5a497c3facc2b54bcffcbb0041c | — | 2023-08-01 | |
| FileHash-SHA256 | 33468dfd84a2959acebb97c26fdc31ab7185045c18b383ce9cc662b6932e9a48 | — | 2023-08-01 | |
| FileHash-SHA256 | 4dc407b28474c0b90f0c5173de5c4f1082c827864f045c4571890d967eadd880 | — | 2023-08-01 | |
| FileHash-SHA256 | 5b3627910fe135475e48fd9e0e89e5ad958d3d500a0b1b5917f592dc6503ee72 | — | 2023-08-01 | |
| FileHash-SHA256 | 7eabd3ba288284403a9e041a82478d4b6490bc4b333d839cc73fa665b211982c | — | 2023-08-01 | |
| FileHash-SHA256 | 917e115cc403e29b4388e0d175cbfac3e7e40ca1742299fbdb353847db2de7c2 | — | 2023-08-01 | |
| FileHash-SHA256 | 9f0c35cc7aab2984d88490afdb515418306146ca72f49edbfbd85244e63cfabd | — | 2023-08-01 | |
| FileHash-SHA256 | c33e56318e574c97521d14d68d24b882ffb0ed65d96203970b482d8b2c332351 | — | 2023-08-01 | |
| FileHash-SHA256 | ca6abfa37f92f45e1a69161f5686f719aaa95d82ad953d6201b0531fb07f0937 | — | 2023-08-01 | |
| FileHash-SHA256 | d259be8dc016d8a2d9b89dbd7106e22a1df2164d84f80986baba5e9a51ed4a65 | — | 2023-08-01 | |
| FileHash-SHA256 | d59df9c859ccd76c321d03702f0914debbadc036e168e677c57b9dcc16e980cb | — | 2023-08-01 | |
| FileHash-SHA256 | d65225dc56d8ff0ea2205829c21b5803fcb03dc57a7e9da5062cbd74e1a6b7d6 | — | 2023-08-01 | |
| FileHash-SHA256 | de052ce06fea7ae3d711654bc182d765a3f440d2630e700e642811c89491df72 | — | 2023-08-01 | |
| FileHash-SHA256 | e5d65e826b5379ca47a371505678bca6071f2538f98b5fef9e33b45da9c06206 | — | 2023-08-01 | |
| FileHash-SHA256 | eda0328bfd45d85f4db5dbb4340f38692175a063b7321b49b2c8ebae3ab2868c | — | 2023-08-01 | |
| domain | affinityhealthservices.net | — | 2023-08-01 | |
| domain | afinityhealthservices.net | — | 2023-08-01 | |
| domain | antea.es | — | 2023-08-01 | |
| domain | aquidneckclub.com | — | 2023-08-01 | |
| domain | ascentengrs.com | — | 2023-08-01 | |
| domain | asianrecorp.com | — | 2023-08-01 | |
| domain | ativy.com | — | 2023-08-01 | |
| domain | avantetextil.com.mx | — | 2023-08-01 | |
| domain | b2gi.fr | — | 2023-08-01 | |
| domain | baughmanco.com | — | 2023-08-01 | |
| domain | bbrook.org | — | 2023-08-01 | |
| domain | bbsautomation.com | — | 2023-08-01 | |
| domain | bethrivkah.edu | — | 2023-08-01 | |
| domain | bhrcorp.org | — | 2023-08-01 | |
| domain | biosonicsinc.com | — | 2023-08-01 | |
| domain | blackandwhitecabs.com.au | — | 2023-08-01 | |
| domain | bonta-viva.it | — | 2023-08-01 | |
| domain | bplawyers.co.id | — | 2023-08-01 | |
| domain | brandywine-homes.com | — | 2023-08-01 | |
| domain | buehnen.de | — | 2023-08-01 | |
| domain | byte.gr | — | 2023-08-01 | |
| domain | cdcbmestihl.com | — | 2023-08-01 | |
| domain | ces-conditionneur.fr | — | 2023-08-01 | |
| domain | cezam.net | — | 2023-08-01 | |
| domain | circlevillecourt.com | — | 2023-08-01 | |
| domain | cktc.edu | — | 2023-08-01 | |
| domain | columbuscitizens.org | — | 2023-08-01 | |
| domain | comacchio.com | — | 2023-08-01 | |
| domain | conseildelentente.org | — | 2023-08-01 | |
| domain | conver-pack.com | — | 2023-08-01 | |
| domain | cordfinancial.com | — | 2023-08-01 | |
| domain | coreautomation.com | — | 2023-08-01 | |
| domain | cotrelec.com | — | 2023-08-01 | |
| domain | credicoop.coop.py | — | 2023-08-01 | |
| domain | crispinvalve.com | — | 2023-08-01 | |
| domain | crystalcreamery.com | — | 2023-08-01 | |
| domain | dmcinet.com | — | 2023-08-01 | |
| domain | dss-cz.com | — | 2023-08-01 | |
| domain | duomed.com | — | 2023-08-01 | |
| domain | ebdlab.com | — | 2023-08-01 | |
| domain | equatortrustees.com | — | 2023-08-01 | |
| domain | eriematerials.com | — | 2023-08-01 | |
| domain | esinsa.com | — | 2023-08-01 | |
| domain | etbrick.com | — | 2023-08-01 | |
| domain | etkinllc.com | — | 2023-08-01 | |
| domain | fabricatedpipe.com | — | 2023-08-01 | |
| domain | fameline.com | — | 2023-08-01 | |
| domain | favoritefoods.com | — | 2023-08-01 | |
| domain | fixscr.com | — | 2023-08-01 | |
| domain | flatironssolutions.com | — | 2023-08-01 | |
| domain | fosfa.cz | — | 2023-08-01 | |
| domain | fsdc.org.hk | — | 2023-08-01 | |
| domain | fxtrans.com | — | 2023-08-01 | |
| domain | generalplug.com | — | 2023-08-01 | |
| domain | globalcommunities.org | — | 2023-08-01 | |
| domain | globalinfovision.com | — | 2023-08-01 | |
| domain | gocontec.com | — | 2023-08-01 | |
| domain | greggardnergm.com | — | 2023-08-01 | |
| domain | groupe-etic.com | — | 2023-08-01 | |
| domain | grouplease.co.th | — | 2023-08-01 | |
| domain | grupohospitalarvidas.com.br | — | 2023-08-01 | |
| domain | gslelectric.com | — | 2023-08-01 | |
| domain | guardiananalytics.com | — | 2023-08-01 | |
| domain | hadefpartners.com | — | 2023-08-01 | |
| domain | hitzler-ingenieure.de | — | 2023-08-01 | |
| domain | hkri.com | — | 2023-08-01 | |
| domain | id-logistics.com | — | 2023-08-01 | |
| domain | ifcaire.org | — | 2023-08-01 | |
| domain | inphenix.com | — | 2023-08-01 | |
| domain | interstateplastics.com | — | 2023-08-01 | |
| domain | irda.com.my | — | 2023-08-01 | |
| domain | ispace.com | — | 2023-08-01 | |
| domain | jams.edu.jo | — | 2023-08-01 | |
| domain | kaffeeberlin.com | — | 2023-08-01 | |
| domain | kostika.co.il | — | 2023-08-01 | |
| domain | ktcs.com.my | — | 2023-08-01 | |
| domain | langlade.wi.us | — | 2023-08-01 | |
| domain | leeindustries.com | — | 2023-08-01 | |
| domain | leslie.co.uk | — | 2023-08-01 | |
| domain | lqtbg.com.cn | — | 2023-08-01 | |
| domain | lssny.org | — | 2023-08-01 | |
| domain | lubrimetal.com | — | 2023-08-01 | |
| domain | mandirisekuritas.co.id | — | 2023-08-01 | |
| domain | marshallconstruction.co.uk | — | 2023-08-01 | |
| domain | mbwswim.com | — | 2023-08-01 | |
| domain | meatel.com | — | 2023-08-01 | |
| domain | medmark.eg | — | 2023-08-01 | |
| domain | meinet.com | — | 2023-08-01 | |
| domain | metronottevigilanza.it | — | 2023-08-01 | |
| domain | multimedica.it | — | 2023-08-01 | |
| domain | myerspowers.com | — | 2023-08-01 | |
| domain | nagase.co.jp | — | 2023-08-01 | |
| domain | nicklaus.com | — | 2023-08-01 | |
| domain | nlsmichigan.org | — | 2023-08-01 | |
| domain | nycollege.edu | — | 2023-08-01 | |
| domain | omegaservicos.com.br | — | 2023-08-01 | |
| domain | pesa.pl | — | 2023-08-01 | |
| domain | pharmagestao.com.br | — | 2023-08-01 | |
| domain | pikenursery.com | — | 2023-08-01 | |
| domain | piramal.com | — | 2023-08-01 | |
| domain | plasmasurgical.com | — | 2023-08-01 | |
| domain | pneusbelislecarrieres.com | — | 2023-08-01 | |
| domain | polycube.co.th | — | 2023-08-01 | |
| domain | premiumize.com | — | 2023-08-01 | |
| domain | princepalace.co.th | — | 2023-08-01 | |
| domain | prlabs.com | — | 2023-08-01 | |
| domain | r-pac.com | — | 2023-08-01 | |
| domain | radium.com.tw | — | 2023-08-01 | |
| domain | rammutual.com | — | 2023-08-01 | |
| domain | redfordpd.com | — | 2023-08-01 | |
| domain | regaltax.us | — | 2023-08-01 | |
| domain | robovic.com | — | 2023-08-01 | |
| domain | roha.com | — | 2023-08-01 | |
| domain | sakrgroup.net | — | 2023-08-01 | |
| domain | sanden.com.ph | — | 2023-08-01 | |
| domain | scandia.ro | — | 2023-08-01 | |
| domain | schradercamargo.com | — | 2023-08-01 | |
| domain | scottobrothers.com | — | 2023-08-01 | |
| domain | seelllc.com | — | 2023-08-01 | |
| domain | servex-us.com | — | 2023-08-01 | |
| domain | sfponline.org | — | 2023-08-01 | |
| domain | shoreregional.org | — | 2023-08-01 | |
| domain | silbon.es | — | 2023-08-01 | |
| domain | siren-japan.com | — | 2023-08-01 | |
| domain | software-line.it | — | 2023-08-01 | |
| domain | sonangol.co.ao | — | 2023-08-01 | |
| domain | soshin.co.jp | — | 2023-08-01 | |
| domain | spoormaker.co.za | — | 2023-08-01 | |
| domain | stavinvest.cz | — | 2023-08-01 | |
| domain | stimgroup.it | — | 2023-08-01 | |
| domain | stmarys.net | — | 2023-08-01 | |
| domain | stuertz.com | — | 2023-08-01 | |
| domain | t-s-c.eu | — | 2023-08-01 | |
| domain | takamiya.co | — | 2023-08-01 | |
| domain | tcels.or.th | — | 2023-08-01 | |
| domain | tdwood.com | — | 2023-08-01 | |
| domain | tec-mex.com.mx | — | 2023-08-01 | |
| domain | telepizza.com | — | 2023-08-01 | |
| domain | thales.com | — | 2023-08-01 | |
| domain | thesoftwareconsultinggroup.com | — | 2023-08-01 | |
| domain | transportsn.com | — | 2023-08-01 | |
| domain | trudi.it | — | 2023-08-01 | |
| domain | twv-staderland.de | — | 2023-08-01 | |
| domain | uhloans.com | — | 2023-08-01 | |
| domain | urmgroup.com.au | — | 2023-08-01 | |
| domain | vcclawservices.com | — | 2023-08-01 | |
| domain | vdbassocies.fr | — | 2023-08-01 | |
| domain | virtuosgames.com | — | 2023-08-01 | |
| domain | vissan.com.vn | — | 2023-08-01 | |
| domain | waldogeneral.com | — | 2023-08-01 | |
| domain | wcinet.com | — | 2023-08-01 | |
| domain | weberweber.at | — | 2023-08-01 | |
| domain | wiannoclub.com | — | 2023-08-01 | |
| domain | wsisd.net | — | 2023-08-01 | |
| domain | wyckoffcomfort.com | — | 2023-08-01 | |
| domain | xlntinc.com | — | 2023-08-01 | |
| domain | xpresscargoinc.com | — | 2023-08-01 | |
| domain | ziapueblo.org | — | 2023-08-01 | |
| hostname | co.langlade.wi.us | — | 2023-08-01 | |
| hostname | george.leslie.co.uk | — | 2023-08-01 | |
| hostname | ww25.premiumize.com | — | 2023-08-01 | |
| URL | https://www.premiumize.com | — | 2023-08-01 | |
| FileHash-MD5 | 03f82d8305ddda058a362c780fe0bc68 | — | 2023-08-01 | |
| FileHash-MD5 | 23e2134379d01a6efcfb519df2819bce | MD5 of 5fff24d4e24b54ac51a129982be591aa59664c888dd9fc9f26da7b226c55d835 | 2023-08-01 | |
| FileHash-MD5 | 6c247131d04bd615cfac45bf9fbd36cf | — | 2023-08-01 | |
| FileHash-MD5 | 8af476e24db8d3cd76b2d8d3d889bb5c | MD5 of 3d62d29b8752da696caa9331f307e067bc371231 | 2023-08-01 | |
| FileHash-MD5 | 8ff5296c345c0901711d84f6708cf85f | — | 2023-08-01 | |
| FileHash-MD5 | b806e9cb1b0f2b8a467e4d1932f9c4f4 | — | 2023-08-01 | |
| FileHash-MD5 | d1d579306a4ddf79a2e7827f1625581c | MD5 of e141562aab9268faa4aba10f58052a16b471988a | 2023-08-01 | |
| FileHash-MD5 | dfa65c7aa3ff8e292e68ddfd2caf2cea | — | 2023-08-01 | |
| FileHash-MD5 | ee397c171fc936211c56d200acc4f7f2 | — | 2023-08-01 | |
| FileHash-MD5 | f41fb69ac4fccbfc7912b225c0cac59d | — | 2023-08-01 | |
| FileHash-MD5 | fd8246314ccc8f8796aead2d7cbb02b1 | — | 2023-08-01 | |
| FileHash-SHA1 | 3d62d29b8752da696caa9331f307e067bc371231 | — | 2023-08-01 | |
| FileHash-SHA1 | 93e1a0c2918ece7a768b9b3fd8d5203e1fa0754c | SHA1 of 5fff24d4e24b54ac51a129982be591aa59664c888dd9fc9f26da7b226c55d835 | 2023-08-01 | |
| FileHash-SHA1 | e141562aab9268faa4aba10f58052a16b471988a | — | 2023-08-01 | |
| FileHash-SHA256 | 5fff24d4e24b54ac51a129982be591aa59664c888dd9fc9f26da7b226c55d835 | — | 2023-08-01 | |
| FileHash-SHA256 | 9a3bf7ba676bf2f66b794f6cf27f8617f298caa4ccf2ac1ecdcbbef260306194 | SHA256 of 3d62d29b8752da696caa9331f307e067bc371231 | 2023-08-01 | |
| FileHash-SHA256 | bb574434925e26514b0daf56b45163e4c32b5fc52a1484854b315f40fd8ff8d2 | SHA256 of e141562aab9268faa4aba10f58052a16b471988a | 2023-08-01 | |
| hostname | www.premiumize.com | — | 2023-08-01 | |
| URL | https://transfer.sh | — | 2023-08-01 | |
| URL | https://send.exploit.in | — | 2023-08-01 | |
| domain | tvk.nl | — | 2023-08-01 |