General

  • Target

    4745f3dc2e5442fa507481521616bf34cce9ffc0cf61aa294270849211b1d1be

  • Size

    573KB

  • Sample

    220714-h2m98aegh4

  • MD5

    4d8c3bbe432078a30d62aa760079fbcf

  • SHA1

    a58d821eda9181fcd487b08d244bd33a67aad775

  • SHA256

    4745f3dc2e5442fa507481521616bf34cce9ffc0cf61aa294270849211b1d1be

  • SHA512

    3312293b27a8a2b412f2888069d933883ab39fd30368bd73990d1146a790ff6b348c424ebf8d73c9f8fb725f03d408b44dd68187977a140e7cd52bfab1a04c0a

Score
10/10

Malware Config

Targets

    • Target

      4745f3dc2e5442fa507481521616bf34cce9ffc0cf61aa294270849211b1d1be

    • Size

      573KB

    • MD5

      4d8c3bbe432078a30d62aa760079fbcf

    • SHA1

      a58d821eda9181fcd487b08d244bd33a67aad775

    • SHA256

      4745f3dc2e5442fa507481521616bf34cce9ffc0cf61aa294270849211b1d1be

    • SHA512

      3312293b27a8a2b412f2888069d933883ab39fd30368bd73990d1146a790ff6b348c424ebf8d73c9f8fb725f03d408b44dd68187977a140e7cd52bfab1a04c0a

    Score
    10/10
    • Luminosity

      Luminosity is a RAT family that was on sale, while claiming to be a system administration utility.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks