Overview

overview

10

Static

static

10

Lunar cosm...er.exe

windows10-1703-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Lunar cosmetics unlocker.exe

  • Size

    24.2MB

  • Sample

    240902-qwwy6s1enk

  • MD5

    0709557807125dc24178d6bc5ba1cec8

  • SHA1

    3461b527fcc5630f08b91ae9ebdf2020bb0c040b

  • SHA256

    aa5dcdef73453f739b35115994fa29341e73566c361cc25fac9d5756e0cf2d9e

  • SHA512

    61a9f20f1ffd38d93c239a0717c8f6bcc3e6733bfc9f4ee39e4fb2e147d9ad8b10bf80e6f8dde745d3bf89c2322113946a39d643bd6819cc1b274aeef4bd2974

  • SSDEEP

    393216:sqPnLFXlr23c1oQSWsgIDOETgsvcGkZMoVgTSepMpnE/NrxKmLxs:dPLFXN23GoQS3gNE/S0+unKh

Score
10/10
empyreanpyinstallerupx

Malware Config

Targets

    • Target

      Lunar cosmetics unlocker.exe

    • Size

      24.2MB

    • MD5

      0709557807125dc24178d6bc5ba1cec8

    • SHA1

      3461b527fcc5630f08b91ae9ebdf2020bb0c040b

    • SHA256

      aa5dcdef73453f739b35115994fa29341e73566c361cc25fac9d5756e0cf2d9e

    • SHA512

      61a9f20f1ffd38d93c239a0717c8f6bcc3e6733bfc9f4ee39e4fb2e147d9ad8b10bf80e6f8dde745d3bf89c2322113946a39d643bd6819cc1b274aeef4bd2974

    • SSDEEP

      393216:sqPnLFXlr23c1oQSWsgIDOETgsvcGkZMoVgTSepMpnE/NrxKmLxs:dPLFXN23GoQS3gNE/S0+unKh

    Score
    7/10
    upx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Matrix

Tasks