General
-
Target
90916e4d7ffcd13583a8b1235e9d3796_JaffaCakes118
-
Size
1.2MB
-
Sample
241123-zkk7zavrfs
-
MD5
90916e4d7ffcd13583a8b1235e9d3796
-
SHA1
0960415f90c292e7433bc808c010c1bafb81f31c
-
SHA256
afa013d64e6acb109ddb42aacc89f7e98b5e5752285e87913a9f802187169756
-
SHA512
98f33c9c08964af3969c35bd538bcbebf46312af3b40016bfa7b3878964d8af1fad0e452cae9d4adcc9d955bec5ddc38eef1767e5067fa3adc38ad31010ec948
-
SSDEEP
24576:orbb/3VR9+qhWdg+rx1UG7LZFMXdaqtQIZPfaZRKceNOfoVNxvPXs:2/3VRQqhWdg+dTF+9QsfavWNKoVNxvP8
Malware Config
Targets
-
-
Target
90916e4d7ffcd13583a8b1235e9d3796_JaffaCakes118
-
Size
1.2MB
-
MD5
90916e4d7ffcd13583a8b1235e9d3796
-
SHA1
0960415f90c292e7433bc808c010c1bafb81f31c
-
SHA256
afa013d64e6acb109ddb42aacc89f7e98b5e5752285e87913a9f802187169756
-
SHA512
98f33c9c08964af3969c35bd538bcbebf46312af3b40016bfa7b3878964d8af1fad0e452cae9d4adcc9d955bec5ddc38eef1767e5067fa3adc38ad31010ec948
-
SSDEEP
24576:orbb/3VR9+qhWdg+rx1UG7LZFMXdaqtQIZPfaZRKceNOfoVNxvPXs:2/3VRQqhWdg+dTF+9QsfavWNKoVNxvP8
Score10/10-
Luminosity
Luminosity is a RAT family that was on sale, while claiming to be a system administration utility.
-
Luminosity family
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1