General

  • Target

    LUNA.rar

  • Size

    81.0MB

  • Sample

    250126-wnzyrazlbl

  • MD5

    2cd89f9650de6d964ec1b3d7fbab3887

  • SHA1

    b82660b0a149ad031465fdcaee7754d2a850d13d

  • SHA256

    03f7242e461e7a60a1204442549d72a7100b7eacf5561536ea3b039ca6a55d82

  • SHA512

    a6470d5b868adbeb10b0cfdc3f17c0959c4359f2e5b7914b29de82b6735c98139e906e434db47e3f051e08015ee7d2d218ce59de4c7f487d36c4ca18c6998f81

  • SSDEEP

    1572864:nS4ffRSShxZpN3f5IK1EflcnhWEXx2+6g0OjRwLGrkffeOixE5YlwqunQz05OvG:SKoSlfRIK10UWEh2NbGgXgm5YlmbYG

Score
7/10

Malware Config

Targets

    • Target

      ChromeDrivers/undetected_chromedriver.exe

    • Size

      14.9MB

    • MD5

      e90e6845092b8a300ce503810ece65c8

    • SHA1

      0c65501c21d534c2638dbf54d2b21bb96e21d8f0

    • SHA256

      a4f1654fd9e993c604585d52cd51072524ed610c98b54a566990428b4a4e8f5f

    • SHA512

      5163fee804e7d1b5ab94dd05e6db2e2c63f872b7fbbc661af407829e02bbb82ba4b49c85aacce0ff91a818acd148fdd046c5c203c6b4ffc4c47ba118101db1d6

    • SSDEEP

      393216:8DdFBCIiYt5XFC4J+dRQhZ35g/SXdAFou5R+gR8K8:8hEU5XpsdRQB+SXohP+gK

    Score
    1/10
    • Target

      LUNA RAIDER.exe

    • Size

      8.3MB

    • MD5

      039dea68f469d8bdbec09c9118db39c4

    • SHA1

      a622626d74590e15df4aefc195225790bfd03398

    • SHA256

      8465cab2f349a7dec02317f1be72efd76436090ec6229c900c24b63916112893

    • SHA512

      952e41113242e789f16e25d88458dcc7edd62ca88f497c509df63f3fe157b3448acdf005167c97bf16d47a886785f3d5dceedc0130c55ddf661efbbbb365d267

    • SSDEEP

      196608:7Jf+oTjRG0gqlHWe71cJWBBgqeW1s6DZK4LJRUIUw:7vG0TlHHhcCsUKuUIUw

    Score
    7/10
    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • Legitimate hosting services abused for malware hosting/C2

    • Target

      LUNAJOINERV8/CefSharp.BrowserSubprocess.Core.dll

    • Size

      939KB

    • MD5

      2dd1cded25fc2457acdef2d24409a8a3

    • SHA1

      17d49daa1de0c5802abdc8434ff6bb956a8d8826

    • SHA256

      dbe6169419fbcd51db62eccd649f08fc202f25e6ec64ae45373f65678ffed789

    • SHA512

      f8181d0ff52ecf6ca0b1cec674c1631ccca2fb25fc1c223772b4bd8a74bab2f3cb8adfb6c5d294117b9998548851e1e91d461f178f08739b3c3364becb5a770d

    • SSDEEP

      24576:hA9quGYBEznLdKXoiYshQspQ8SdWHubiWyzorQK0OXPILWb:4GYknLdKXoiYshQspQ8SdWHubiWyzor1

    Score
    3/10
    • Target

      LUNAJOINERV8/CefSharp.BrowserSubprocess.exe

    • Size

      7KB

    • MD5

      88371e6b41e5b36677529f23f20d386e

    • SHA1

      76064763a96fc685eaa7c936f63cf819cec3cc9f

    • SHA256

      bf389b0d61bce88712849b6052875390fac64e5ce839923ef49eb820c518e745

    • SHA512

      527d7f35d47a510c41048daefef0dd15a9b55ff2017138d6238f25539a2794667d09f83386dfbbc0cffaae41ecb0cb248530a83ead7cb2c7d2912aeaf23156c4

    • SSDEEP

      96:St7xpI7lFGsmQBDsWnaXlzFZbetmAmNt61OYcXei+U:EFpICsmQB3aXlzFZ5sAYcXeU

    Score
    3/10
    • Target

      LUNAJOINERV8/CefSharp.Core.dll

    • Size

      1.4MB

    • MD5

      7596a2896793f5ed0f53f7b90a4470b8

    • SHA1

      68dcef91f034874901dd7b3b5a37f7f0e1e3dcfc

    • SHA256

      bff98d281720688a37bbdb02133f1241accae7f78212eb5d08a52bd695b62780

    • SHA512

      d843afcbfa88fc2adcc58bfcdd7b9397fc9c609098e61219a12032687f858a64ea4a72cd2ae258ef858af37d45f10fd0f225e7874133e75077e42a76765c5015

    • SSDEEP

      24576:UxrXUn3QpC3jtEiWNzarN87xbFqcwYhPolDexla9e6dhkOisnKR++e6P4ZcVQm6p:1J3hEBgrN87xbFqcwYhPolDexla9e6dx

    Score
    3/10
    • Target

      LUNAJOINERV8/CefSharp.WinForms.dll

    • Size

      31KB

    • MD5

      ef0d016fd3d44284bfd09039c2166905

    • SHA1

      3af14547ebc99a44592cbcb19df7e568f84b5189

    • SHA256

      1be4fe9cd7c8e88b40556c7a22b30cc489e5723e1e73717960d913b406419e9a

    • SHA512

      1f66331502887a4f1c3029ebcb6379050b037cec4f55d21240a82fb9f54d8714697164382d819a695f08dd7151be8fb5e1d13da44d3bbf94633e5b4e58d0f49e

    • SSDEEP

      384:L0TI1zdv63QqA2wx6Qp2KPqoBatXxDSWGFILyXqCrmGBZ4Me2o72GSUt/zBzitx+:/zAQUzQMAC0mxft7p6xJeDhV

    Score
    3/10
    • Target

      LUNAJOINERV8/CefSharp.dll

    • Size

      990KB

    • MD5

      2fbcd8b7ebc50e5872d42f25ba9f9fef

    • SHA1

      57f078a60db2e95af3db8f97cfc2fb1d5055e69b

    • SHA256

      73e34f4df769c7d066ee719e06bd60a61d1f27b37356d182432800d4098794f4

    • SHA512

      747d6ab94650507ca8ec636dd414d453e25563aad3ffdf30e8e7f492bb24554bbd1690aa05aa0213f5f7317d0fd8ca9d6664bc81b653b5881d2c5a602d6585cc

    • SSDEEP

      12288:H6aDUSA1ctaPxorzye3llyLGxdyfJJMkiqpYfgWQR0:H61ctam3lvrqhpY1m0

    Score
    3/10
    • Target

      LUNAJOINERV8/Guna.UI2.dll

    • Size

      1.9MB

    • MD5

      83e9df5d534f50280251d662861bf476

    • SHA1

      d2ecd37e462b3c6fa763341a12f9de74326cb646

    • SHA256

      836e1cc306eab0817a10c613a9c99d4dcbd604624b8b90f551d410dc164eef82

    • SHA512

      af38cfbd5fb866662afa4548011ba2d262cd70ff145fe4118db3322a9ea243bd9d8dc9cdfc62a246df014949a94d159bcd47a8f8f04010b93c963511a7e6a72a

    • SSDEEP

      24576:+5lxrKZ9DHFoXP/Jt/A1IKKPZANZuwgHQ/jz41RMIK24:Av/CIRqwRMIK24

    Score
    1/10
    • Target

      LUNAJOINERV8/LUNAJoiner.exe

    • Size

      5.9MB

    • MD5

      d4520e165bd30ea4d52ea6b48af05b12

    • SHA1

      f9aabd38e454cc66909746297ed22bfc2d84e91c

    • SHA256

      fce0b28dc4e9442cd8d4743005d51203720ff6e0da18d285f47fc3898e19acf9

    • SHA512

      e40b837e63e8cbc8cec1275f3f1a004114243de4d9b09fe01455523b7fde08ac3f63fd966bd1973c16072680ba0e1bb9f4c4b19ed1f23fbce3372161be4e7a06

    • SSDEEP

      98304:3eA3gGwXeP/IotJgB4U0wqRjY+8nK6B0anbyNRogMf:35gDX2/nSNAjAnbaabyNSg

    Score
    3/10
    • Target

      LUNAJOINERV8/Newtonsoft.Json.dll

    • Size

      659KB

    • MD5

      4df6c8781e70c3a4912b5be796e6d337

    • SHA1

      cbc510520fcd85dbc1c82b02e82040702aca9b79

    • SHA256

      3598cccad5b535fea6f93662107a4183bfd6167bf1d0f80260436093edc2e3af

    • SHA512

      964d9813e4d11e1e603e0a9627885c52034b088d0b0dfa5ac0043c27df204e621a2a654445f440ae318e15b1c5fea5c469da9e6a7350a787fef9edf6f0418e5c

    • SSDEEP

      12288:rktg1lrjC8rjICqbwNjR4xq7iiX19K7Df/SoOKQrIB+jfP:rggD7PIEjR4xq7iiXTK7D3So9AIB+jn

    Score
    1/10
    • Target

      LUNAJOINERV8/chrome_elf.dll

    • Size

      823KB

    • MD5

      07c8e57e374b6eac1e8ca25cca479084

    • SHA1

      aed59e4a3cfefc88edf268d1f61463e4181d2beb

    • SHA256

      31cb72d373fe4b6d4b06f75442b983223016d1fd1550c799b5c9583567ce1a8e

    • SHA512

      00ea0c4837e6c15d6347c7291db0a83ed874c277a775d145639db462c0428b13cb3698877e4a7196bad15b8994887b022ce6add05ba632f7cf49e1c54a558d53

    • SSDEEP

      12288:/pM0WDOBbAfCq9NIVfbloWoMmsp4Fx19P4xyVrpANtESMCMuIm4eR5+nDSr3:xM5DOBbAf7PIVfblrjB69P4VNGQQ

    Score
    3/10
    • Target

      LUNAJOINERV8/d3dcompiler_47.dll

    • Size

      3.5MB

    • MD5

      f76b1d2cd95385b21e61874761ddb53a

    • SHA1

      e5219dc55dcd6b8643e3920ad21d0640fd714383

    • SHA256

      8bf0eeb5081d8397e2f84f69449c8a80d9c0cdcf82bcef7a484309046adcb081

    • SHA512

      8e5c6541bbea6730c4f6392439454f516d56ac9ad6d6b55336e52361cc80a35fbed8a90d58020d92fa4ac9fcfeee6c280754a9e99cc32bae901b00306626e69f

    • SSDEEP

      49152:fjmJAksRXmBNgC9ITPPE8WHmy0HRZ+kyOzDJn5c5v5H3pqC23u6q+25omPEyXzjl:fy2Ckrj+kyOv2MJ+6q8kbqS/Ai

    Score
    3/10
    • Target

      LUNAJOINERV8/libEGL.dll

    • Size

      315KB

    • MD5

      4bab7064ed4acc389fab5d1a27b43963

    • SHA1

      5ff8620571dbd8c091380f47ddac349134a222da

    • SHA256

      d39dd1e5dfce7e1174b909992bf1864b82e7a30beb7c936909b8d0305a85899e

    • SHA512

      977b25e5261dbd4f9612520f268e9935f3fede8ba282d235c668cc092028ee87e269ebb1813452260b6450fa89689965719097c8b30a4ae48a47dbd77e88d534

    • SSDEEP

      6144:g2/57NKssYhx3zLNnHRWMInWitc9avvBLJynhE3Aqme2mamSuiY+Twbpy:g4LKsKMInWitcGvBLJynM1LSuiY+y

    Score
    3/10
    • Target

      LUNAJOINERV8/libGLESv2.dll

    • Size

      5.2MB

    • MD5

      4e9f22eac4d8c4fbcb24c5bdc83e6a83

    • SHA1

      5383be33b7d8deaee316c8d7fc699921687eeee7

    • SHA256

      0cf4cdc4b4cd8c47a8f6f4a9240737d629869539315009d0644501190a36e41b

    • SHA512

      bce8807680d9c573a510183de1d6c7a53e60cf3f16b42b30cbf99ab3da63d59354df695a56cbc0af814995b00151b9466040acbf9efd8aa18784a90b95420207

    • SSDEEP

      98304:LhjQcQTSktYItrvxWkjtFzk3ucikrbIz1s6fYJSdu2G6o6ow3:LhjCmmYWrvxzk3uyz6fYJf6h

    Score
    3/10
    • Target

      LUNAJOINERV8/libcef.dll

    • Size

      111.9MB

    • MD5

      056d92c5007cc2c1c7c277567bbc47da

    • SHA1

      a1e188fb121f719f246f98f09ccf2feeeb66c1ca

    • SHA256

      e623478400f5b960ce53414436ef997722552d317bab5ec6ad99bbf7fe63f731

    • SHA512

      686e31baaa1dd9ff0254facf3e7d557dbd49abba96c4b2ad7a698d90934f1fea47c7dc65257215526ac9c695eb778540d4b9213a0b04a9cf1af22b13bf595624

    • SSDEEP

      1572864:m0iDn80cnCquR4uQYuj1d1E087TjdrMriuD0Qttc+iu73SCcGovsaRaoV4o5gUKG:mTDtS5Ysd60A5KH7Q+Qn

    Score
    3/10
    • Target

      LUNAJOINERV8/swiftshader/libEGL.dll

    • Size

      335KB

    • MD5

      a82a7efa25fe225f70bbc3cfd8001dde

    • SHA1

      58212ff2f304f1c1eff94814d7fb74e7d66b5a9d

    • SHA256

      732b045724cf27a806bbba938e9353882a7e8b763a47f37dc8de143848126282

    • SHA512

      f0100baf6a05137ef2537e9f8010e116bb484298345ebe6965a1b8e713043065ae9a4e3c78faabaafbc54789d5abcaf808db48c0ae52bbf7f8ae76f5dd5c0e60

    • SSDEEP

      6144:14/IJKrDDX+qujEmH+ZjB5VP+Xp1RiiMi9GLhxuAEuLVHhlu7D9kszs/v7XLo:1SGKrDZjB5VP+XpKiMi9Aauzlu7D6Nb

    Score
    3/10
    • Target

      LUNAJOINERV8/swiftshader/libGLESv2.dll

    • Size

      2.3MB

    • MD5

      c77540bbc88e14d542af4841628fa126

    • SHA1

      ceb37e785ca4481fac15b6a1a948c9683cd47157

    • SHA256

      bfe8887500239a54b606f44515d124dd2f2860ba029296bbcc26232ba6c799a7

    • SHA512

      44a18afa63078d2e34c469153f1b43510522a184c02b020d950354f35ddc461f3377907a0543b62c036c36215c886d0a39fddeeec177598773cd0addb058c377

    • SSDEEP

      49152:JLapHTW+Ckc7DkLvnCyXnUvK777TBsM20nNBpPg7R3PH9HMPuRQ9jtMcqIxH7u7v:J0XZqIxH7u7QhOBc8FepT8EHclAU

    Score
    3/10
    • Target

      bananajoiner/main.py

    • Size

      9KB

    • MD5

      a07872658ab192377c45fab2cd234d01

    • SHA1

      f9f84ebc3e699ab3c1051a5bc5ec19abd59b536f

    • SHA256

      123549aa69c6f7d378513a88fbb1e7dcb50e0f71ebfcf4c4b954aaaf1ac1b5f0

    • SHA512

      6db2f88cbeea8d1fed29d1e28abe7fa5a426c5d09f5fc4264cb1b62acc2185bfe067d7967635d3d2f223a9a13f9104bacaa80a06216e4a879c05e786803c498d

    • SSDEEP

      192:pCYCJtuIiifbtHipDwnpAz44AuCzKCTh7vn:pCzhio1pApAudCtL

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks