General

  • Target

    475e8d3f51b69463408ea38a6e236eef934a2593c3573eab86f5f3bd43c6c6ac

  • Size

    709KB

  • Sample

    220714-hp6k2abbep

  • MD5

    a774b9f4913630c8f5cceaf860f7f831

  • SHA1

    538824b34fea1680b26c960c801696ca4bac0680

  • SHA256

    475e8d3f51b69463408ea38a6e236eef934a2593c3573eab86f5f3bd43c6c6ac

  • SHA512

    cae80570446172eb9fe4d815ea610fe9484459a9371374b256c518ef0afaccc549092084d5ccc0433ea302ece6624fc4ba5c0b4143629c35d1b1def370e5dfb7

Malware Config

Targets

    • Target

      475e8d3f51b69463408ea38a6e236eef934a2593c3573eab86f5f3bd43c6c6ac

    • Size

      709KB

    • MD5

      a774b9f4913630c8f5cceaf860f7f831

    • SHA1

      538824b34fea1680b26c960c801696ca4bac0680

    • SHA256

      475e8d3f51b69463408ea38a6e236eef934a2593c3573eab86f5f3bd43c6c6ac

    • SHA512

      cae80570446172eb9fe4d815ea610fe9484459a9371374b256c518ef0afaccc549092084d5ccc0433ea302ece6624fc4ba5c0b4143629c35d1b1def370e5dfb7

    • Luminosity

      Luminosity is a RAT family that was on sale, while claiming to be a system administration utility.

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks