lampion | 9a2f575d77cc03afe1230666ed23c1da58dd1644abf02e2487c6cd0db8b2a26d | Triage

Submit
Reports

Overview

overview

Static

static

9a2f575d77...6d.vbs

windows7_x64

9a2f575d77...6d.vbs

windows10_x64

Sharing

General

Target

9a2f575d77cc03afe1230666ed23c1da58dd1644abf02e2487c6cd0db8b2a26d
Size

16KB
Sample

220128-x59d7abhe2
MD5

2a22f9e6eee207c35229063f75121696
SHA1

bdc5d7edcebaaa8508a005943c77cf3fc436542c
SHA256

9a2f575d77cc03afe1230666ed23c1da58dd1644abf02e2487c6cd0db8b2a26d
SHA512

edad6360a533ffbc4dc91d323109808f45f01070a245555a1a91c62ef142e180c09f61cc92a11a9583cdd6c5a5fd66642d832b14eab20fac77aa0b237a6cce68

Score

10^/10

lampion banker trojan

Static task

static1

Behavioral task

behavioral1

Sample

9a2f575d77cc03afe1230666ed23c1da58dd1644abf02e2487c6cd0db8b2a26d.vbs

Resource

win7-en-20211208

lampion banker trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

9a2f575d77cc03afe1230666ed23c1da58dd1644abf02e2487c6cd0db8b2a26d.vbs

Resource

win10-en-20211208

lampion banker trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  9a2f575d77cc03afe1230666ed23c1da58dd1644abf02e2487c6cd0db8b2a26d
- Size
  
  16KB
- MD5
  
  2a22f9e6eee207c35229063f75121696
- SHA1
  
  bdc5d7edcebaaa8508a005943c77cf3fc436542c
- SHA256
  
  9a2f575d77cc03afe1230666ed23c1da58dd1644abf02e2487c6cd0db8b2a26d
- SHA512
  
  edad6360a533ffbc4dc91d323109808f45f01070a245555a1a91c62ef142e180c09f61cc92a11a9583cdd6c5a5fd66642d832b14eab20fac77aa0b237a6cce68
Score

10^/10

lampion banker trojan
- Lampion
  Lampion is a banking trojan, targeting Portuguese speaking countries.
  trojan banker lampion
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lampionbankertrojan

behavioral2

lampionbankertrojan

© 2018-2024

Terms | Privacy