General

  • Target

    16ebc150998d18a2f00ba92ff7704d8e3615f6cddf8a48921b678439189a1bd3

  • Size

    501KB

  • Sample

    220608-2lq6qacgck

  • MD5

    365c7943dc2aab5777fbc8a127a5187d

  • SHA1

    08aab407d36826c7dd2036d0cc260907a68cb7a9

  • SHA256

    16ebc150998d18a2f00ba92ff7704d8e3615f6cddf8a48921b678439189a1bd3

  • SHA512

    5cd9f4e9ad28ccce3435efd1bed18a4145a35e42e8f9258e7b5ebf61cb8ef34ea43192c39e4bc6231fa0cd4ca963200aeee62fb19f5016528968aa76a68c260a

Malware Config

Targets

    • Target

      16ebc150998d18a2f00ba92ff7704d8e3615f6cddf8a48921b678439189a1bd3

    • Size

      501KB

    • MD5

      365c7943dc2aab5777fbc8a127a5187d

    • SHA1

      08aab407d36826c7dd2036d0cc260907a68cb7a9

    • SHA256

      16ebc150998d18a2f00ba92ff7704d8e3615f6cddf8a48921b678439189a1bd3

    • SHA512

      5cd9f4e9ad28ccce3435efd1bed18a4145a35e42e8f9258e7b5ebf61cb8ef34ea43192c39e4bc6231fa0cd4ca963200aeee62fb19f5016528968aa76a68c260a

    • Luminosity

      Luminosity is a RAT family that was on sale, while claiming to be a system administration utility.

    • Modifies WinLogon for persistence

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks