luminosity | 075890d64e24198252e675961d25e7d5cf24dc76a2edcf4d880e595ba6e265c3 | Triage

Sharing

General

Target

075890d64e24198252e675961d25e7d5cf24dc76a2edcf4d880e595ba6e265c3.exe
Size

637KB
Sample

250218-23qlhs1phr
MD5

a2888153204a255cd7c3928314ee2038
SHA1

97066f5da137d8e41c0531abf330d1753cec4d40
SHA256

075890d64e24198252e675961d25e7d5cf24dc76a2edcf4d880e595ba6e265c3
SHA512

f7193b737842efcc7728d5e1ec071918a7f6d846d225210f2e770c3df4514b3ef2132550fc022d32bad3c13ebb0455a681243635254f408d0ae6b6967afa9107
SSDEEP

12288:+9LH05gIM7UTuUPkId0IDaUZyqKNuMxV/abCs1RHrVRb/Q:+ZAS80+5mva2sjVRc

Score

10^/10

luminosity discovery rat

Malware Config

Targets

- Target
  
  075890d64e24198252e675961d25e7d5cf24dc76a2edcf4d880e595ba6e265c3.exe
- Size
  
  637KB
- MD5
  
  a2888153204a255cd7c3928314ee2038
- SHA1
  
  97066f5da137d8e41c0531abf330d1753cec4d40
- SHA256
  
  075890d64e24198252e675961d25e7d5cf24dc76a2edcf4d880e595ba6e265c3
- SHA512
  
  f7193b737842efcc7728d5e1ec071918a7f6d846d225210f2e770c3df4514b3ef2132550fc022d32bad3c13ebb0455a681243635254f408d0ae6b6967afa9107
- SSDEEP
  
  12288:+9LH05gIM7UTuUPkId0IDaUZyqKNuMxV/abCs1RHrVRb/Q:+ZAS80+5mva2sjVRc
Score

10^/10

discovery luminosity rat
- Luminosity
  Luminosity is a RAT family that was on sale, while claiming to be a system administration utility.
  rat luminosity
- Luminosity family
  luminosity
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

luminositydiscoveryrat