Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

LunarEngineSetup.exe

windows7-x64

8

LunarEngineSetup.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    LunarEngineSetup.exe

  • Size

    20.3MB

  • Sample

    230111-dg89qsac73

  • MD5

    1e127e16166f6acc05b433f5c151af2e

  • SHA1

    2e763303c5bf1969dd412d77452ffa7a18c52b8c

  • SHA256

    a8a84632f43da3e7feb8b4d64580daa17d92fcb09974770bf5f4492e46ca2125

  • SHA512

    2797915d0cb78178a75356fc790929905bde59ccf2f4ade3e23c7b9851926abbe3d30c3479569fefcdf3ea89522c9050c44638b032b76f57771d767050fedbf6

  • SSDEEP

    393216:h4IffuuxDS1fDiq5jUcUgPeyJ7o48nG/qQ6o+1BbwmdsUywobkCT+:h4IeuFSDPvUCbJk48G/D/OtFyed

Score
8/10
discovery

Malware Config

Targets

    • Target

      LunarEngineSetup.exe

    • Size

      20.3MB

    • MD5

      1e127e16166f6acc05b433f5c151af2e

    • SHA1

      2e763303c5bf1969dd412d77452ffa7a18c52b8c

    • SHA256

      a8a84632f43da3e7feb8b4d64580daa17d92fcb09974770bf5f4492e46ca2125

    • SHA512

      2797915d0cb78178a75356fc790929905bde59ccf2f4ade3e23c7b9851926abbe3d30c3479569fefcdf3ea89522c9050c44638b032b76f57771d767050fedbf6

    • SSDEEP

      393216:h4IffuuxDS1fDiq5jUcUgPeyJ7o48nG/qQ6o+1BbwmdsUywobkCT+:h4IeuFSDPvUCbJk48G/D/OtFyed

    Score
    8/10
    discovery

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks