Overview

overview

10

Static

static

3

d85d570534...6N.exe

windows7-x64

3

d85d570534...6N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d85d5705341402ac5bbca2b09c8b6457593b74b7d3154c85df27e5bdcc4e5b06N.exe

  • Size

    308KB

  • Sample

    250102-fq8exavldz

  • MD5

    aeb339e181c69bba41fe2fb1e55f1b10

  • SHA1

    3bb81a81e5536332eaefdb35db898c2d00d0a8a3

  • SHA256

    d85d5705341402ac5bbca2b09c8b6457593b74b7d3154c85df27e5bdcc4e5b06

  • SHA512

    c4b32556bc9a9a3042d7f7e8c1c67abe6f2cf696580d39e4dccbca7364de14f083aa957b36bd73afc7f9e978220e3a480694f2f7e69cb1569e06cb54500088ec

  • SSDEEP

    3072:tCtNsQBMVlV7zPkloChL/bmYkRwy0ZaMPdWTx4koqO1hxG3ehZgNa4Etv20dGJ:smQeV77e/bOyy0hksrG37/EA

Score
10/10
luminositydiscoverypersistencerat

Malware Config

Targets

    • Target

      d85d5705341402ac5bbca2b09c8b6457593b74b7d3154c85df27e5bdcc4e5b06N.exe

    • Size

      308KB

    • MD5

      aeb339e181c69bba41fe2fb1e55f1b10

    • SHA1

      3bb81a81e5536332eaefdb35db898c2d00d0a8a3

    • SHA256

      d85d5705341402ac5bbca2b09c8b6457593b74b7d3154c85df27e5bdcc4e5b06

    • SHA512

      c4b32556bc9a9a3042d7f7e8c1c67abe6f2cf696580d39e4dccbca7364de14f083aa957b36bd73afc7f9e978220e3a480694f2f7e69cb1569e06cb54500088ec

    • SSDEEP

      3072:tCtNsQBMVlV7zPkloChL/bmYkRwy0ZaMPdWTx4koqO1hxG3ehZgNa4Etv20dGJ:smQeV77e/bOyy0hksrG37/EA

    Score
    10/10
    discoveryluminositypersistencerat

    • Luminosity

      Luminosity is a RAT family that was on sale, while claiming to be a system administration utility.

      ratluminosity

    • Luminosity family

      luminosity

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks