Overview

overview

7

Static

static

3

Luna.exe

windows7-x64

7

Luna.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Luna.exe

  • Size

    24.8MB

  • Sample

    220925-pk89pafhan

  • MD5

    b4a5c57c0e5d710cc4a3cbd177e17bbd

  • SHA1

    e1545ad84651991d11c8f046fadad6728956128c

  • SHA256

    51a4796b8c0f0d5d389cfc804962924365bc0a216663b7cf739a9b76e1afcc80

  • SHA512

    8b24500182a5e02fb376a2d47607bf9481fe437dc6b61780c9df089b12ffee82d2eadce7e5f7b18d37c19774bf76c07aa0c70227b56e629da196d84469dcf277

  • SSDEEP

    786432:uD6J+zH31h/pYAIyVmdXKuuPeFOu/svJ+/Dy5W2xheY:YzH3jh7IyVQtuPeF3/svYe53xheY

Score
7/10
pyinstaller

Malware Config

Targets

    • Target

      Luna.exe

    • Size

      24.8MB

    • MD5

      b4a5c57c0e5d710cc4a3cbd177e17bbd

    • SHA1

      e1545ad84651991d11c8f046fadad6728956128c

    • SHA256

      51a4796b8c0f0d5d389cfc804962924365bc0a216663b7cf739a9b76e1afcc80

    • SHA512

      8b24500182a5e02fb376a2d47607bf9481fe437dc6b61780c9df089b12ffee82d2eadce7e5f7b18d37c19774bf76c07aa0c70227b56e629da196d84469dcf277

    • SSDEEP

      786432:uD6J+zH31h/pYAIyVmdXKuuPeFOu/svJ+/Dy5W2xheY:YzH3jh7IyVQtuPeF3/svYe53xheY

    Score
    7/10

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks