Managed XDR

home-petik-ss-malware-...elex_luca-stealer_lynx (Conti) — malware analysis report

File info

Filename
home-petik-ss-malware-2025-06-15_b22c1d582b1997e58fa2da26fe99a775_amadey_bitrat_black-basta_cobalt-strike_dragonforce_elex_luca-stealer_lynx
File type
PE32 executable (GUI) Intel 80386, for MS Windows
File size
448 KB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
df21272de6c0f777ad4caa30d3ef264cc3729cbe
SHA256
1eef40b82b5e84b44d33c0a6bb7a8cbea086db321bf455f0e6dab8336c6af50b
MD5
b22c1d582b1997e58fa2da26fe99a775

Malwares

  • Conti

Signatures

Privilege Escalation

T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1027.002 packer_entropy: Probably contains compressed or encrypted data
T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
unexpected_exception: Unexpected exception
no_graphical_activity: No graphic activity

Related reports

Managed XDR