758b35d2794d43aee02959bf4d1ed7df9ec40c31c39e8a09c6d574a66422ac43 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

Lucifer v2.26.zip

windows10-2004-x64

9

Sharing

General

Target

Lucifer v2.26.zip
Size

10.5MB
Sample

240417-22ms8sab21
MD5

11d445f011d60d4d7ca2e0cc8fad1bb9
SHA1

ff36ba4b984dd12b5c382421329eec504f2e21df
SHA256

758b35d2794d43aee02959bf4d1ed7df9ec40c31c39e8a09c6d574a66422ac43
SHA512

ad8f18e1f3b9e529203935ae79652ff2277fd82ee3427a8c76abada6b62d13323be2b23ffc25d244845b42e4b089949ebd2b398a4679fc5fba1324d3abe42884
SSDEEP

196608:KYpzYmJGS+Yqb+q2vaJeKuuZZQ91Gy4tJfSZ5ixVlDQRU/tMpTYFev:KYdYmJ5Jq2vB5iy4tJqZ5iHlDQUMpTYY

Score

9^/10

evasion themida

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Lucifer v2.26.zip

Resource

win10v2004-20240412-en

evasion themida

windows10-2004-x64

7 signatures

600 seconds

Malware Config

Targets

- Target
  
  Lucifer v2.26.zip
- Size
  
  10.5MB
- MD5
  
  11d445f011d60d4d7ca2e0cc8fad1bb9
- SHA1
  
  ff36ba4b984dd12b5c382421329eec504f2e21df
- SHA256
  
  758b35d2794d43aee02959bf4d1ed7df9ec40c31c39e8a09c6d574a66422ac43
- SHA512
  
  ad8f18e1f3b9e529203935ae79652ff2277fd82ee3427a8c76abada6b62d13323be2b23ffc25d244845b42e4b089949ebd2b398a4679fc5fba1324d3abe42884
- SSDEEP
  
  196608:KYpzYmJGS+Yqb+q2vaJeKuuZZQ91Gy4tJfSZ5ixVlDQRU/tMpTYFev:KYdYmJ5Jq2vB5iy4tJqZ5iHlDQUMpTYY
Score

9^/10

evasion themida
- Identifies VirtualBox via ACPI registry values (likely anti-VM)
  evasion
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Themida packer
  Detects Themida, an advanced Windows software protection system.
  themida
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy