Resubmissions

06-01-2023 10:26

230106-mgngpsfg29 10

01-12-2022 16:35

221201-t32psagb59 10

25-11-2022 01:29

221125-bv9fjsfd2w 8

General

  • Target

    3c1ed24caa50ce23e852d3cc618e6ace.exe

  • Size

    17MB

  • Sample

    221201-t32psagb59

  • MD5

    3c1ed24caa50ce23e852d3cc618e6ace

  • SHA1

    a387decc624a3e86b9b3db1cf1ed14063a34599b

  • SHA256

    7946f262e17efca2bfcd10e6919b6c03cd4164895cdc40c44ce7827cc63f5e35

  • SHA512

    f05e7c3088f3a82776fec0c933e080aacd885f7b86e8018f1d1873993ebca9a51f56033b68c381b41f196e6c03e9170ddcb3c245c690144e1aa9d085a4d5fd90

  • SSDEEP

    98304:DMSVESq5LvCeXv0kFBoO3JnBdes+sWwRImg0cH2nP4o9p/wpDm7qCOPXwRalZLCt:ASSSMMkXnBb2mg0mwPBKDdDP0

Score
10/10

Malware Config

Extracted

Family

lucastealer

C2

https://api.telegram.org/bot5740238611:AAESHdmffXlJNV7SD6-YjfXQmsg5jsSWb3Y

Targets

    • Target

      3c1ed24caa50ce23e852d3cc618e6ace.exe

    • Size

      17MB

    • MD5

      3c1ed24caa50ce23e852d3cc618e6ace

    • SHA1

      a387decc624a3e86b9b3db1cf1ed14063a34599b

    • SHA256

      7946f262e17efca2bfcd10e6919b6c03cd4164895cdc40c44ce7827cc63f5e35

    • SHA512

      f05e7c3088f3a82776fec0c933e080aacd885f7b86e8018f1d1873993ebca9a51f56033b68c381b41f196e6c03e9170ddcb3c245c690144e1aa9d085a4d5fd90

    • SSDEEP

      98304:DMSVESq5LvCeXv0kFBoO3JnBdes+sWwRImg0cH2nP4o9p/wpDm7qCOPXwRalZLCt:ASSSMMkXnBb2mg0mwPBKDdDP0

    Score
    10/10
    • Luca Stealer

      Info stealer written in Rust first seen in July 2022.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                        Privilege Escalation

                          Tasks