lampion | 11b1e980138607d93f56490c747e135aa1d92320bcc43cd352330ccbe00e47a8 | Triage

Sharing

General

Target

11b1e980138607d93f56490c747e135aa1d92320bcc43cd352330ccbe00e47a8
Size

64KB
Sample

220604-a8j75sgbgj
MD5

8de3b003a5f1e8e0e14ec288eff2409b
SHA1

b33a4476264173a84c8b1564ae54dc38a1d252bc
SHA256

11b1e980138607d93f56490c747e135aa1d92320bcc43cd352330ccbe00e47a8
SHA512

64559ed106db2559bd049b26018e0b57eec05d1686e59ad263a42fe3a8c948fa235d8c94f66d8bd6290aec6906ca88df84e4315f6cbb11b09ab00c90a2e197ed

Score

10^/10

lampion banker trojan

Malware Config

Targets

- Target
  
  DocumentoSetembro-CS-U-65289742019-09_13/DocumentoSetembro-CS-U-65289742019-09_13.pdf
- Size
  
  1KB
- MD5
  
  e89319f12ee86fb529e6c51f660609bf
- SHA1
  
  d8fbe5688b7f7d97e3462fa754e58dd88a013d00
- SHA256
  
  a8c85058036c423e0dd921936c337a5ddd9800fe3d13a703f9634ff3d0e4dece
- SHA512
  
  e4b789ca3d20faa98f8c5faca3cb9f25e26c6d0b02cda254367561887bdf05b0384369c7409a68a56988e7645ab5b89be1ca02024ea05006f236352ec7cf5df3
Score

1^/10
behavioral1 behavioral2
- Target
  
  DocumentoSetembro-CS-U-65289742019-09_13/DocumentoSetembro-CS-U-65289742019-09_13.vbs
- Size
  
  15KB
- MD5
  
  3c36b6fdd3bafc16376dd2bc68fec317
- SHA1
  
  92729855a8cb8399e02190b17e807c0536e764f3
- SHA256
  
  4494da2105572a5ad07bd08110e35045c34967306f12a7ea7c91fffc0f79f599
- SHA512
  
  65897f7de6e2e7df85f3410d145907f42da49927ec961311901bb950a23c4a610282953f964d4cc8a910db573321a64d3a343de59b66db89f8508cacc5918639
Score

10^/10

lampion banker trojan
- Lampion
  Lampion is a banking trojan, targeting Portuguese speaking countries.
  trojan banker lampion
- Blocklisted process makes network request
- Drops startup file
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

lampionbankertrojan

behavioral4

lampionbankertrojan