Overview

overview

7

Static

static

3

GreenLuma....er.zip

windows7-x64

1

GreenLuma....er.zip

windows10-2004-x64

1

GreenLuma....er.exe

windows7-x64

1

GreenLuma....er.exe

windows10-2004-x64

1

GreenLuma....er.exe

windows7-x64

7

GreenLuma....er.exe

windows10-2004-x64

7

main.pyc

windows7-x64

3

main.pyc

windows10-2004-x64

3

GreenLuma....on.dll

windows7-x64

1

GreenLuma....on.dll

windows10-2004-x64

1

GreenLuma....ME.txt

windows7-x64

1

GreenLuma....ME.txt

windows10-2004-x64

1

GreenLuma....on.ico

windows7-x64

3

GreenLuma....on.ico

windows10-2004-x64

3

Analysis

  • max time kernel
    147s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-06-2024 18:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    GreenLuma.2020.Manager/GL2020 Updater.exe

  • Size

    10KB

  • MD5

    deddc893c4d6a5856bb060f50aa5fbad

  • SHA1

    f827c25786936ed37c4464049ec96993853d620f

  • SHA256

    ec2eb4b3ee023fcc776dc04878edbed48d546073b63056bf693d4c0842e76325

  • SHA512

    c3983d18c665a9788425eec6496a0cea99b1cedd60af89b0d09cd75885bef5105f15bfac71636761386d520d839c4f1bb489735b4c2656e637d8770b8bf5d4bb

  • SSDEEP

    192:lpb//5Idhzj9CtTii9aNtQaQr+kEfsDAayTHVyUap5fiLV9qg:v//azG9aNtTkEffFwU8qVX

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\GreenLuma.2020.Manager\GL2020 Updater.exe
    "C:\Users\Admin\AppData\Local\Temp\GreenLuma.2020.Manager\GL2020 Updater.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:3972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3972-0-0x000000007527E000-0x000000007527F000-memory.dmp
    Filesize

    4KB

    Download
  • memory/3972-1-0x0000000000CD0000-0x0000000000CDA000-memory.dmp
    Filesize

    40KB

    Download
  • memory/3972-2-0x0000000005660000-0x0000000005712000-memory.dmp
    Filesize

    712KB

    Download
  • memory/3972-3-0x0000000075270000-0x0000000075A20000-memory.dmp
    Filesize

    7.7MB

    Download
  • memory/3972-4-0x000000007527E000-0x000000007527F000-memory.dmp
    Filesize

    4KB

    Download
  • memory/3972-5-0x0000000075270000-0x0000000075A20000-memory.dmp
    Filesize

    7.7MB

    Download