Overview

overview

10

Static

static

9e77a03223...15.vbs

windows7_x64

10

9e77a03223...15.vbs

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9e77a03223de62be70afe19961ca8d0b88b46c20c834a5bab30ab3334baa2415

  • Size

    23KB

  • Sample

    220128-x2tjkabdcr

  • MD5

    d05ff8c51b3cb5ead20b4066a225ab52

  • SHA1

    2d9a46deaa6ebae0884c9afd62d7f6bbe7429d50

  • SHA256

    9e77a03223de62be70afe19961ca8d0b88b46c20c834a5bab30ab3334baa2415

  • SHA512

    5751ad3d68f0a07ca9f4ed1212209712d2ff4a54a59dcc16ef16dec7f6d34484bdd2fc3d430aa4a7399500992a592301b3ed0a40fc5c9c5c15f1140fe73ffc42

Score
10/10
lampionbankertrojan

Malware Config

Targets

    • Target

      9e77a03223de62be70afe19961ca8d0b88b46c20c834a5bab30ab3334baa2415

    • Size

      23KB

    • MD5

      d05ff8c51b3cb5ead20b4066a225ab52

    • SHA1

      2d9a46deaa6ebae0884c9afd62d7f6bbe7429d50

    • SHA256

      9e77a03223de62be70afe19961ca8d0b88b46c20c834a5bab30ab3334baa2415

    • SHA512

      5751ad3d68f0a07ca9f4ed1212209712d2ff4a54a59dcc16ef16dec7f6d34484bdd2fc3d430aa4a7399500992a592301b3ed0a40fc5c9c5c15f1140fe73ffc42

    Score
    10/10
    lampionbankertrojan

    • Lampion

      Lampion is a banking trojan, targeting Portuguese speaking countries.

      trojanbankerlampion

    • Blocklisted process makes network request

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks