General
-
Target
ffcb55ac9bc6e6c8725d916f38e5a90e_JaffaCakes118
-
Size
613KB
-
Sample
240930-c7p34syaqh
-
MD5
ffcb55ac9bc6e6c8725d916f38e5a90e
-
SHA1
54c27582d071a8dc82fb7d5364056338c86e9407
-
SHA256
f27af15a955d59471692be9c410eb372351dd750119b9146e89eea8047bfad26
-
SHA512
fe07fe7581b865636f4145056da7db2f49fc018e25de576c8f2c087736a6b0d0916ac39a5fbf71ece915647e42de1dda35992f8b77e21f1dbad0c7b50d6bd1f3
-
SSDEEP
12288:8TK8m0FhbBwOjksPnZZDiuhSld5BRTEsQYFgIZ3gsxZO:4vRaOYsfzDpYLVQY+
Malware Config
Targets
-
-
Target
ffcb55ac9bc6e6c8725d916f38e5a90e_JaffaCakes118
-
Size
613KB
-
MD5
ffcb55ac9bc6e6c8725d916f38e5a90e
-
SHA1
54c27582d071a8dc82fb7d5364056338c86e9407
-
SHA256
f27af15a955d59471692be9c410eb372351dd750119b9146e89eea8047bfad26
-
SHA512
fe07fe7581b865636f4145056da7db2f49fc018e25de576c8f2c087736a6b0d0916ac39a5fbf71ece915647e42de1dda35992f8b77e21f1dbad0c7b50d6bd1f3
-
SSDEEP
12288:8TK8m0FhbBwOjksPnZZDiuhSld5BRTEsQYFgIZ3gsxZO:4vRaOYsfzDpYLVQY+
Score10/10-
Luminosity
Luminosity is a RAT family that was on sale, while claiming to be a system administration utility.
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1