lampion | 779ce84a4fb07c6b682eca35f836651025d7b9cfbe069423efb7902c583a3073 | Triage

Submit
Reports

Overview

overview

Static

static

1

windows.exe

windows10-1703-x64

Resubmissions

06-03-2023 14:33

230306-rw9qpscg76 10

06-03-2023 14:32

230306-rwm7pscg72 1

06-03-2023 14:24

230306-rq2g5scg48 10

Sharing

General

Target

ap01p.zip
Size

33.0MB
Sample

230306-rw9qpscg76
MD5

2054931c023a9338e311046e907bd79d
SHA1

0ce5d9bde5778e45533bd6bb4fcde0744c9fcabb
SHA256

779ce84a4fb07c6b682eca35f836651025d7b9cfbe069423efb7902c583a3073
SHA512

6aacf414022b69f4c3eacd5e9be84921878b147279c243dd090cad1bda7fc4df1a89e78ffacf41b473d64f89f8441f586ca1cd94838580b68c10c5e4bf4d59c4
SSDEEP

786432:16N94TQFSTUfDg9urftZBEGjzf4I+SWAxaFbbCovapFDBilXsKC/J/PscNYYE3:16dpDg9uTtZBEGjp+SLxmGBD4Yh/2Yy

Score

10^/10

lampion banker persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

windows.exe

Resource

win10-20230220-en

lampion banker persistence trojan

windows10-1703-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  windows.exe
- Size
  
  9.8MB
- MD5
  
  f8ceee79a7b323a7683a46f1c7636ad3
- SHA1
  
  8fe53a9600d1eb1e6789989d214480fa21711f31
- SHA256
  
  cbe35fed4367bc69d7ad61ab2e25c455501633f4adc8a8b864724d02f82804c2
- SHA512
  
  495d701de6372de2995ad6ae1e482d63d4197dcf8ab7f3b918ef73a42560bb88ce4dee0e36a99358f8b375baa9a6693f12eb3b12fdc84182c0a4f5049f247f20
- SSDEEP
  
  98304:AnNBW0h2GJfzIyepDL+LuMYBV+NBWzUNrQqMqS82ABqYBYCq6/4N5FZ7w8av8pD8:iW0SLw8BDoVn
Score

10^/10

lampion banker persistence trojan
- Lampion
  Lampion is a banking trojan, targeting Portuguese speaking countries.
  trojan banker lampion
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

lampionbankerpersistencetrojan

© 2018-2024

Terms | Privacy