cb59ccab7312cee6a0b136bb2ccb847e2e5bf42910db9de1e9570c26e23bfecf | Triage

Sharing

General

Target

Lucifer.exe
Size

96KB
Sample

240711-ka3a6sxgrl
MD5

e3d41c385bb6d23a1f09257033ccfb33
SHA1

a2ede7bc41adb444e3e3b63e604190d5379d859d
SHA256

cb59ccab7312cee6a0b136bb2ccb847e2e5bf42910db9de1e9570c26e23bfecf
SHA512

5fdfdf13f894a87171a9d40876c9b39155e0ac744e5b375b21216b62a9e219138968804827022ed4a9dff33e6ab19142b74a878ed6e37255475ea7dceed0296c
SSDEEP

1536:j2iaAUlVQAIzhqdxAGgwywvNprF2zOnxDqjYar+8v9DJQlFFB8gRjo3qMyIE:jqli58fVgw9rFxEY7gQzBMqMyIE

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  Lucifer.exe
- Size
  
  96KB
- MD5
  
  e3d41c385bb6d23a1f09257033ccfb33
- SHA1
  
  a2ede7bc41adb444e3e3b63e604190d5379d859d
- SHA256
  
  cb59ccab7312cee6a0b136bb2ccb847e2e5bf42910db9de1e9570c26e23bfecf
- SHA512
  
  5fdfdf13f894a87171a9d40876c9b39155e0ac744e5b375b21216b62a9e219138968804827022ed4a9dff33e6ab19142b74a878ed6e37255475ea7dceed0296c
- SSDEEP
  
  1536:j2iaAUlVQAIzhqdxAGgwywvNprF2zOnxDqjYar+8v9DJQlFFB8gRjo3qMyIE:jqli58fVgw9rFxEY7gQzBMqMyIE
Score

7^/10

spyware stealer
- Reads data files stored by FTP clients
  Tries to access configuration files associated with programs like FileZilla.
  spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1