luminosity | 4036e811c36f778c622451f1b33f856d2dca0e3bace0703541c03922b50453a6 | Triage

Sharing

General

Target

e8d4b7df5d9584577be88dfa1eee66d7_JaffaCakes118
Size

1.0MB
Sample

240918-lnvzpavdjq
MD5

e8d4b7df5d9584577be88dfa1eee66d7
SHA1

1249c6d6eed0f5b8836e556485ed143937b56fd1
SHA256

4036e811c36f778c622451f1b33f856d2dca0e3bace0703541c03922b50453a6
SHA512

d37973d9023fa5f3d7e2546b1e08fe014725c3e0a39da70ebb5570e9dd638043ea8da5b3140be7a2a841cea7a2406f4a295c428d472d8aeb38c26f593ea35081
SSDEEP

24576:pr2JF/mXLD3VVHX3tzXLlcy1dgTy8qMLV9IxDpcngG:pCJF/mXLD3VBRXBqLj0Dp3

Score

10^/10

luminosity discovery persistence rat

Malware Config

Targets

- Target
  
  e8d4b7df5d9584577be88dfa1eee66d7_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  e8d4b7df5d9584577be88dfa1eee66d7
- SHA1
  
  1249c6d6eed0f5b8836e556485ed143937b56fd1
- SHA256
  
  4036e811c36f778c622451f1b33f856d2dca0e3bace0703541c03922b50453a6
- SHA512
  
  d37973d9023fa5f3d7e2546b1e08fe014725c3e0a39da70ebb5570e9dd638043ea8da5b3140be7a2a841cea7a2406f4a295c428d472d8aeb38c26f593ea35081
- SSDEEP
  
  24576:pr2JF/mXLD3VVHX3tzXLlcy1dgTy8qMLV9IxDpcngG:pCJF/mXLD3VBRXBqLj0Dp3
Score

10^/10

luminosity discovery persistence rat
- Luminosity
  Luminosity is a RAT family that was on sale, while claiming to be a system administration utility.
  rat luminosity
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

luminositydiscoverypersistencerat

behavioral2

luminositydiscoverypersistencerat