General

  • Target

    Lunar Client Qt.zip

  • Size

    14.6MB

  • Sample

    240223-r36mmabc53

  • MD5

    5a9db2c8f2eb4630b240ce1b0df1fe3e

  • SHA1

    75dda6c33179aabebb54ee347ad03ffa65c2d797

  • SHA256

    b532f87e13187631357416bb9b1707a0f0ec69894c1fdbba2c2b15b555200552

  • SHA512

    1d78b55ed9fd0ae473bcff0b788a8226cb4b07a14228f2d02e0604a11bba17f9480fa26113c54dc0e2768745b7792086c693db51859bf94340cf404f30a644a3

  • SSDEEP

    393216:FBnHeRayqMaDDUgwxb9syBMbIRG9HYhyD4t6cymseT:FBnHXHDDUgQdyicYQ4emT

Score
7/10

Malware Config

Targets

    • Target

      Lunar Client Qt/Qt5Core.dll

    • Size

      7.8MB

    • MD5

      f38f9d503157c6b2401801f9572fd048

    • SHA1

      52f999e93532349d0fca73f49e7a4e987b4a5e1f

    • SHA256

      858abb9ddcb3cd4fa15c01d3cd64ff4371a79516b02bc3df20590a82161fba55

    • SHA512

      c31966139cb1d5df66ea5cfde65b09449d5f25d5c4fc146cd44f0e0124e8106eef124fc40e2522aaee571e4685e605ebbcab8305a23d00ab9d7828c70a7f1be3

    • SSDEEP

      196608:N84evpspTjPCixOJsv6tWKFdu9CUGSFj+p:NNevpIT2TJsv6tWKFdu9C4g

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      Lunar Client Qt/Qt5Gui.dll

    • Size

      9.2MB

    • MD5

      fc7d92feb89f055f7f19169e7a1f3621

    • SHA1

      5a0f1b5fa82f419020fb38010340032971495dcd

    • SHA256

      8bcf807aaf2419843a778994187fa4a2fe9e2d926435ed8add3e670935b3f9aa

    • SHA512

      e97dbc3afc7875dd753c10804aa1c98abc6462f4a295ef88f9f96292a620d607f8d67fb3172a4eca72664f7c0e928e2709dfff42586f516c4ba3567fa4a334e0

    • SSDEEP

      98304:4jXCr0pPxu7Ve0VW0I4UZYS437MU1MXUDyfK:Oyr0pv0VW0qYDLMUX

    Score
    1/10
    • Target

      Lunar Client Qt/Qt5Network.dll

    • Size

      2.6MB

    • MD5

      94da65cb700658388a9cc3478abee446

    • SHA1

      d6eb041d57a730ca203a00c925281bc112a99fda

    • SHA256

      7660849b5647d0cd1c893fd0f977474df7b968bfae17cec79dbc77359f4e01f3

    • SHA512

      d71046b4a48ee6b085d10131a4bdd77045258685d6d10cff8626e7c5ed1a02218e095dc5e3a63b57868d84ab71b41e1265b7f8cf87fe462c90e8d7ec1248e699

    • SSDEEP

      49152:duOO43/DCdP/4O5WPkryQ/HiCn3Ihf15PA3/ITe:dtFs/dn+hPI/ge

    Score
    1/10
    • Target

      Lunar Client Qt/Qt5Svg.dll

    • Size

      566KB

    • MD5

      7b80103c5e287dc427a6e9435ab05f35

    • SHA1

      272f90165ff6d440e2d4ce21f69eeb44ac8a5c9b

    • SHA256

      25ad9cf13bbef3b7f7f99c8effc25aedd20dcf8b2455e4b685ebb27d510f9ecc

    • SHA512

      522037c7aa50cbf122d1e11e1b0284afe7b7f77dc6f1fafd89d803816e8ab92a98b8f9a14c2cca45bcc475405f4b6c89ba9da3973572982a903d38fd6bfff2cd

    • SSDEEP

      6144:L/C5POseyOirW00dvVLZfQGWIbZpqLf+sia1FSafmeVdtH5OMavK1qUWKarhiZ0Y:LKEsUirW0YdLub0c9l

    Score
    1/10
    • Target

      Lunar Client Qt/Qt5Widgets.dll

    • Size

      8.3MB

    • MD5

      f4cf06dedf04a732be32acd1291cf032

    • SHA1

      8b9f8b822722537cf3043bc0e3a0069c33c1c66b

    • SHA256

      f1cdc4e0717d054a654373c52d98b8730d4dfd48eac0e5d9f518d9cede45fcdd

    • SHA512

      e0dd90285afafeef96776c268672283604c61502f7ca7d165b054654e6ca960f0e9087f56693fad48d4d18c78b44fe7e5f05988739e789a1712440c3a742dc3a

    • SSDEEP

      49152:rSMPF2bpm2G9ZoRpLYAELJGZ+9gOfXFipQcwZR4XRDFT8wedoyq+QkniEDXvpTxW:rUpmSkLY+GDyC/qWjxLKg6fW+jVD8

    Score
    1/10
    • Target

      Lunar Client Qt/agents (DON'T TOUCH)/UnlockCosmetics

    • Size

      563KB

    • MD5

      fe43cecf015b2991fa1ef69abf834238

    • SHA1

      ecda71b09b6816630cb571167fa09df9f451eb9d

    • SHA256

      cd24b33057f1fa4da6deb971a5ce50a479716672119d5a1fd6d6a0de89fe5318

    • SHA512

      1ab8687626f64c906ee82ef2b4f6040ae127122b2e1ae61e1a7e0131618495dfa011eb942c96d09282e378f60f7de62ccd0000e1470dfa9b6a2b722ed800fad6

    • SSDEEP

      12288:KqoB1wJELKUhek8lmmTDP94sMjOZTXopDHlUXTVlU6HMZjzs4CeFkPaZ:K1vwqhe5DSsMjOFXcHSXTVuwMZjqykSZ

    Score
    7/10
    • Target

      Lunar Client Qt/bearer/qgenericbearer.dll

    • Size

      156KB

    • MD5

      d3df6e5210541f5e719ce2691a79f203

    • SHA1

      324849a4ee44740d293ce39e42a6901bcbafdc7e

    • SHA256

      f57c87490f18899e5980c24a504896ad86b595848de8d23846871fda0cb93503

    • SHA512

      8c70de2cd099cab78251e0d99e91e51d982b67af1e7a11f174c2d3eea518679d4a3fb7ec75c1037e8770562b56735bb398c32aa4d38f8137350fa7c1f9a0f689

    • SSDEEP

      3072:UWc1rglrQWRaUbJGEKdD0SW/N0oBuIlXfIlL9v8z:Uzy8WBChgN0oBuIlXfIlL9v8z

    Score
    1/10
    • Target

      Lunar Client Qt/iconengines/qsvgicon.dll

    • Size

      97KB

    • MD5

      4f717969032d4cb764a58a88b69c9389

    • SHA1

      2125a9b44e5fbd5c30d2a1704e9546dccfb5edb5

    • SHA256

      e458a825d98be0c0a60e8fa50ded20d21f36a84141ba78422466611a6f790968

    • SHA512

      bd4d40c7d6791ac243c75aa1e529e6264fd8a7b33cbfc7970989d49bb040a8e33b8a0b1f40ea2cea77c6dcc24f155c2a30e4c809aaf7d1e13e931f83fa189eda

    • SSDEEP

      3072:PhiVBYy246eWf31ioQYN8CmkBfxg8EkU/:JiVBYy2PeWf118CmkBfxg8ET/

    Score
    1/10
    • Target

      Lunar Client Qt/imageformats/qgif.dll

    • Size

      78KB

    • MD5

      6643793ba0c0d45dd5cccde0a5b25d33

    • SHA1

      92cc3a8febb2178e90da189ba8a1bd2bd7732ea2

    • SHA256

      d50521b169a6326aef57437e6e51efd4bfad298f958cf51b778a5990c3311a68

    • SHA512

      5dd99c63ed9b915e2678195be7815e7abc2f2b1f71441679810be215b840d28830c230ceb56f67ffc3c1d4a2067971e31e6a861563396990447a5130d841e543

    • SSDEEP

      1536:GJ1xnxBXZoy2Eo9WYghCnKfvmaIMFqq9AcfiUfDsZUfF:GJ1xnxBXZoYo9WYgbmHMFqq9AcfiUfDD

    Score
    1/10
    • Target

      Lunar Client Qt/imageformats/qico.dll

    • Size

      81KB

    • MD5

      7da403414b84b57eaee35fef9a907152

    • SHA1

      19dab25959851e5c5876131ae6479e2809ac51eb

    • SHA256

      a721b24ca1fa0187891ec899a8a0e969e4e2c3a7d1d01edc97ceffea9e379026

    • SHA512

      2b1037bff4e07e3f91a52140770f755e03f54204d91d0a81ebad472aaae73ad5b20d450de5a9748434a7d1727046bb1a0342608c578377b02854364a3f2ef1fa

    • SSDEEP

      1536:T9vXN/kS6XMWxZsJDJRIvEAzloT/vqfM+AbeBTUfE:BNqXMWxZtEAzloT/vqfM+AbeBf

    Score
    1/10
    • Target

      Lunar Client Qt/imageformats/qjpeg.dll

    • Size

      476KB

    • MD5

      5efa4cbf69cea6e2e5db46492b6fb31a

    • SHA1

      4c282dffbebcab838e56cd3ab11e71b62ed7e0fd

    • SHA256

      830442002bb18dc98a97090942cf8dd892d264e6031123c856e2acee8b2d89d7

    • SHA512

      14686738e281113caec512b30165a18b8dbb982add6bab3447508fe69c666f1072d93febedbd07bde0660143b5489bf3a2ca5900375a7e8f8ccd2c1de3b43926

    • SSDEEP

      6144:kNnLzZc+4dtRABmfnvJru/rmIjwP3oXg4fzAWYyRH9OirkePfWiZBkM:kNnL9xOnDzN4Zdr4M

    Score
    1/10
    • Target

      Lunar Client Qt/imageformats/qsvg.dll

    • Size

      74KB

    • MD5

      0cf17da428a03ff8825abca5405da38a

    • SHA1

      ba397600e84587c4dec0bdcaa4b645dac2bfb42c

    • SHA256

      eb6861b1577f7ebc210a8120198c199e24b666f79b67b28f64aaeb77331378ad

    • SHA512

      fc04d23e3809808f337790ad62570237f4fc6d87802e6fbce9a49d8bc973165e13b3311feb8803f1c12241d56ca7073928006d70a945024be9d10b5c50bf8575

    • SSDEEP

      1536:9VJZnhMkWkDnT8apNWDD2FE+Mf54uUcd024Ufw:5ZhMkWk75oDCFE+Mf54uUZ2U

    Score
    1/10
    • Target

      Lunar Client Qt/libcrypto-1_1-x64.dll

    • Size

      2.7MB

    • MD5

      dcf3de145792e70012a4a5df58ad03d9

    • SHA1

      fc433ba10170c5a22fedaaafbeb0dbd379cfd22e

    • SHA256

      c246b0eac5994f7726689202de782b9f7c88678cf9d19250d481bb437c88fe64

    • SHA512

      3bfb2cbe4fc5b7df782ada6cdf5a40aa1d3c528b06f154559d7de5804d8cebac376699af6489f78d024bbdb26140092b3fce103d857bd7e98d5e0d4b60320184

    • SSDEEP

      49152:zVwAsO8nXHeus0vM6zu/IU6iFveYXpBJLKAmE7sRGtlqb5TNC3h3PDuKPftSw/Fl:0+usisQ+FvTXpBJLK9/5Ter79Sw/F31j

    Score
    1/10
    • Target

      Lunar Client Qt/libgcc_s_seh-1.dll

    • Size

      105KB

    • MD5

      1130dd2875e1cb8a5df7cbce5103792f

    • SHA1

      eb6af7a8b3c793bd96937b2459ba59e04df0eaa6

    • SHA256

      1c25cb5cab8ad14c1440f1cc0baaafde44e5bde1091597fbeee1ce3a089a259d

    • SHA512

      e162fc20cf553ec0ec1640598a57182be7e37733dbbfab2bfc039ebdb8d8b8a3fd74dfa5915ad0b085d310032f69f44d79cb3f42ada0442046016b70009652a8

    • SSDEEP

      1536:CcQQpjWqbh1sbMl8d4RR68AP4FopvcRJ3n0ubJ6AZg2JSQ+kgj2ZDFwlF2:3gqDsbMedKlNycRh0hAPvgyOlF2

    Score
    1/10
    • Target

      Lunar Client Qt/libssl-1_1-x64.dll

    • Size

      558KB

    • MD5

      f35287a0b966b591e07b8b90ef01b184

    • SHA1

      281a8dfa0ed5b1838b318c0180a1f19a8e08eea1

    • SHA256

      5e58885f69e6967bdc66c486653b46f87042f45d7c6c4c4482fa1cb3d1eb6ea1

    • SHA512

      a51fa8099b461d52a4f8fa5f4bd8974e6db01108627a5e3f74c5a83af495f40f20a69751b5410bf32cf86d6744d4bd6a49862c6d825b350a204ff6e1b0bc04c4

    • SSDEEP

      12288:hzjTs6ZKX9niPNeurm/XxGotFk71xFUhMmvuD9Gkt:hzjo3X9niPNUTFk71xFUhMmvuD9Gkt

    Score
    1/10
    • Target

      Lunar Client Qt/libstdc++-6.dll

    • Size

      1.9MB

    • MD5

      49245caf4d03b49cb1ce1c98c0d41497

    • SHA1

      be169c1434cb19334c260e97629497a977d0cecd

    • SHA256

      5e212ae907c8ba17b5b2878ea8bbf11dc54cbdf33ee5b93eb2d23c0339fbfaad

    • SHA512

      6ba9dc809eed69698903b346427d8b569f14aaf7062723afb22fff42fb8d131d144fdc7606151a4f7ae7589c053a40d05038d1279e807d3852f2394372c1415d

    • SSDEEP

      24576:NVvTTxC8fvTGou5gIK5sMX/uiCtx/lz03vYnhSMXlrEyfwSdB0d4PcCtMM:jvTTnvTGoUcsMX/uiCtx/mYpLcCtMM

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks