lampion | 0604586fcea208bcb4350d7dd9d5c250702f1a0e9ec0d6801b272ace6918d34c | Triage

Submit
Reports

Overview

overview

Static

static

0604586fce...4c.vbs

windows7_x64

0604586fce...4c.vbs

windows10_x64

Sharing

General

Target

0604586fcea208bcb4350d7dd9d5c250702f1a0e9ec0d6801b272ace6918d34c
Size

38KB
Sample

220128-2jxkqafdar
MD5

2135d5e3d9eedbdb324af6331d6c6bea
SHA1

0c4c364c85126b6e808e9edaef21d8d1e22e3c41
SHA256

0604586fcea208bcb4350d7dd9d5c250702f1a0e9ec0d6801b272ace6918d34c
SHA512

3430151be33ac2e312c3427613bca72e6853498a9ced76ad1ff30fbaa04fb8b071fbe9a75a5906957cba5047373452ee7f61a783a1803b723f94b813e7735ebf

Score

10^/10

lampion banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

0604586fcea208bcb4350d7dd9d5c250702f1a0e9ec0d6801b272ace6918d34c.vbs

Resource

win7-en-20211208

lampion banker trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

0604586fcea208bcb4350d7dd9d5c250702f1a0e9ec0d6801b272ace6918d34c.vbs

Resource

win10-en-20211208

lampion banker trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  0604586fcea208bcb4350d7dd9d5c250702f1a0e9ec0d6801b272ace6918d34c
- Size
  
  38KB
- MD5
  
  2135d5e3d9eedbdb324af6331d6c6bea
- SHA1
  
  0c4c364c85126b6e808e9edaef21d8d1e22e3c41
- SHA256
  
  0604586fcea208bcb4350d7dd9d5c250702f1a0e9ec0d6801b272ace6918d34c
- SHA512
  
  3430151be33ac2e312c3427613bca72e6853498a9ced76ad1ff30fbaa04fb8b071fbe9a75a5906957cba5047373452ee7f61a783a1803b723f94b813e7735ebf
Score

10^/10

lampion banker trojan
- Lampion
  Lampion is a banking trojan, targeting Portuguese speaking countries.
  trojan banker lampion
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lampionbankertrojan

behavioral2

lampionbankertrojan

© 2018-2024

Terms | Privacy