078898cf626e80ac8dfa8e11f62731d0da3557691cbd8ce4bf27bcaf71f36e45 | Triage

Submit
Reports

Overview

overview

Static

static

1

Bootstrapper.exe

windows7-x64

Bootstrapper.exe

windows10-2004-x64

$TEMP/Grass

windows7-x64

1

$TEMP/Grass

windows10-2004-x64

1

$TEMP/Rape

windows7-x64

1

$TEMP/Rape

windows10-2004-x64

1

$TEMP/Soldier

windows7-x64

1

$TEMP/Soldier

windows10-2004-x64

1

EngagingEntities/Blue

windows7-x64

1

EngagingEntities/Blue

windows10-2004-x64

1

EngagingEn...donald

windows7-x64

1

EngagingEn...donald

windows10-2004-x64

1

PotatoBlonde/Achieve

windows7-x64

1

PotatoBlonde/Achieve

windows10-2004-x64

1

PushUpdate/All

windows7-x64

1

PushUpdate/All

windows10-2004-x64

1

PushUpdate...tt.cab

windows7-x64

1

PushUpdate...tt.cab

windows10-2004-x64

1

Bare

windows7-x64

1

Bare

windows10-2004-x64

1

Collaboration

windows7-x64

1

Collaboration

windows10-2004-x64

1

Costumes

windows7-x64

1

Costumes

windows10-2004-x64

1

Happens

windows7-x64

1

Happens

windows10-2004-x64

1

Hull

windows7-x64

1

Hull

windows10-2004-x64

1

Months

windows7-x64

1

Months

windows10-2004-x64

1

Particles

windows7-x64

1

Particles

windows10-2004-x64

1

Analysis

max time kernel
149s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
28/01/2025, 17:02

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Bootstrapper.exe

Resource

win7-20240903-en

lumma discovery stealer

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

Bootstrapper.exe

Resource

win10v2004-20241007-en

lumma discovery stealer

windows10-2004-x64

13 signatures

150 seconds

Behavioral task

behavioral3

Sample

$TEMP/Grass

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

$TEMP/Grass

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

$TEMP/Rape

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

$TEMP/Rape

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

$TEMP/Soldier

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

$TEMP/Soldier

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

EngagingEntities/Blue

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

EngagingEntities/Blue

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

EngagingEntities/Mcdonald

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

EngagingEntities/Mcdonald

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

PotatoBlonde/Achieve

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

PotatoBlonde/Achieve

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

PushUpdate/All

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

PushUpdate/All

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

PushUpdate/Marriott.cab

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

PushUpdate/Marriott.cab

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Bare

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Bare

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Collaboration

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Collaboration

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Costumes

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Costumes

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Happens

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Happens

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Hull

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Hull

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Months

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Months

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Particles

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Particles

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

EngagingEntities/Blue
Size

77KB
MD5

69cef765fd888bf92d8fe00d5939503f
SHA1

3a3b162245f0b6e145a33056b753f365c0d2f962
SHA256

62c493a3f99320021b2c243c1031b4f544fd839dcc5779f75127b8c718468292
SHA512

2a1308618c299fe16e9818b0e37843321ba8979844b22f5cfec2d7a5b4abf22b5e4e706db100e35c7ff61c32b0d9650caf5c5caa7a89869d8be14d062177ee14
SSDEEP

1536:Lpkmvn19x9g9R6Ep7D1aOdvFISaP9+Ksadj19EF0zkmFdWhk4bEh4amu/W:1V9gR60D1HtISaP9yEXEFfIWK4bdafe

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\EngagingEntities\Blue
1⤵
PID:2140

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy