078898cf626e80ac8dfa8e11f62731d0da3557691cbd8ce4bf27bcaf71f36e45 | Triage

Submit
Reports

Overview

overview

Static

static

1

Bootstrapper.exe

windows7-x64

Bootstrapper.exe

windows10-2004-x64

$TEMP/Grass

windows7-x64

1

$TEMP/Grass

windows10-2004-x64

1

$TEMP/Rape

windows7-x64

1

$TEMP/Rape

windows10-2004-x64

1

$TEMP/Soldier

windows7-x64

1

$TEMP/Soldier

windows10-2004-x64

1

EngagingEntities/Blue

windows7-x64

1

EngagingEntities/Blue

windows10-2004-x64

1

EngagingEn...donald

windows7-x64

1

EngagingEn...donald

windows10-2004-x64

1

PotatoBlonde/Achieve

windows7-x64

1

PotatoBlonde/Achieve

windows10-2004-x64

1

PushUpdate/All

windows7-x64

1

PushUpdate/All

windows10-2004-x64

1

PushUpdate...tt.cab

windows7-x64

1

PushUpdate...tt.cab

windows10-2004-x64

1

Bare

windows7-x64

1

Bare

windows10-2004-x64

1

Collaboration

windows7-x64

1

Collaboration

windows10-2004-x64

1

Costumes

windows7-x64

1

Costumes

windows10-2004-x64

1

Happens

windows7-x64

1

Happens

windows10-2004-x64

1

Hull

windows7-x64

1

Hull

windows10-2004-x64

1

Months

windows7-x64

1

Months

windows10-2004-x64

1

Particles

windows7-x64

1

Particles

windows10-2004-x64

1

Analysis

max time kernel
149s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
28/01/2025, 17:02

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Bootstrapper.exe

Resource

win7-20240903-en

lumma discovery stealer

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

Bootstrapper.exe

Resource

win10v2004-20241007-en

lumma discovery stealer

windows10-2004-x64

13 signatures

150 seconds

Behavioral task

behavioral3

Sample

$TEMP/Grass

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

$TEMP/Grass

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

$TEMP/Rape

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

$TEMP/Rape

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

$TEMP/Soldier

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

$TEMP/Soldier

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

EngagingEntities/Blue

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

EngagingEntities/Blue

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

EngagingEntities/Mcdonald

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

EngagingEntities/Mcdonald

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

PotatoBlonde/Achieve

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

PotatoBlonde/Achieve

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

PushUpdate/All

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

PushUpdate/All

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

PushUpdate/Marriott.cab

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

PushUpdate/Marriott.cab

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Bare

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Bare

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Collaboration

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Collaboration

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Costumes

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Costumes

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Happens

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Happens

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Hull

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Hull

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Months

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Months

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Particles

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Particles

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

$TEMP/Rape
Size

80KB
MD5

da60afd0e7846475eb467a411c9d93e3
SHA1

30b04a96b1af7da59e37ae1a0be7438c8593259d
SHA256

7676d619230abd2a2ec536953ef7e14a659fa053fe84edc2e15cc65620f0c8c4
SHA512

0081a63e70ed1f268468ea0ff48e051c9777b8666d9c401d028d248940ab1e1bba6142a844afbbb4325d76757ba10f7ddf802c06e84eece1773a35553280b432
SSDEEP

1536:d4yEpYJ2Ec5VyRKG0Gf4RKcwHeAk1lhqcnVWQE82O3vY5NpfnzQQTzB:d4JFN/AKCARKGThqcngfNO3QLpfU2N

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\$TEMP\Rape
1⤵
PID:4588

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy