General

  • Target

    fe54c49acfc6485aea338336c5be99ebb0df277c779fd25b18801ad71f886cee

  • Size

    28.9MB

  • Sample

    210515-lwdg9jc7ce

  • MD5

    38dcc51a50e6c2f1282e9a7620d89c17

  • SHA1

    e971cde2c9b72989886a85b1bd8f80a9aa531c11

  • SHA256

    fe54c49acfc6485aea338336c5be99ebb0df277c779fd25b18801ad71f886cee

  • SHA512

    bf18b1244dcf2ec5204e29b56a17080353e5d2ca70e9d342a9d9602846919909596ef8a1e8e6db5c2f9ad2502d947a6ef713a78b71447c647f4fb057d1b86936

Malware Config

Targets

    • Target

      fe54c49acfc6485aea338336c5be99ebb0df277c779fd25b18801ad71f886cee

    • Size

      28.9MB

    • MD5

      38dcc51a50e6c2f1282e9a7620d89c17

    • SHA1

      e971cde2c9b72989886a85b1bd8f80a9aa531c11

    • SHA256

      fe54c49acfc6485aea338336c5be99ebb0df277c779fd25b18801ad71f886cee

    • SHA512

      bf18b1244dcf2ec5204e29b56a17080353e5d2ca70e9d342a9d9602846919909596ef8a1e8e6db5c2f9ad2502d947a6ef713a78b71447c647f4fb057d1b86936

    • Luminosity

      Luminosity is a RAT family that was on sale, while claiming to be a system administration utility.

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks