Lumma Stealer利用虚假验证码页面传播无文件恶意软件-安全客 - 安全资讯平台
Tags
attack-pattern: Javascript - T1059.007 Mshta - T1218.005 Powershell - T1059.001 Mshta - T1170 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID d227aa69-d004-4577-9562-063260e099b3
Fingerprint a4fae2f4f7378f42
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 23, 2024, midnight
Added to db Oct. 23, 2024, 10:28 a.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Lumma Stealer利用虚假验证码页面传播无文件恶意软件
Title Lumma Stealer利用虚假验证码页面传播无文件恶意软件-安全客 - 安全资讯平台
Detected Hints/Tags/Attributes 11/1/5
Source URLs
Redirection Url
Details Source https://www.anquanke.com/post/id/301189
URL Provider
Details Provider Source level domain
Details anquanke.com www.anquanke.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 15 安全客-有思想的安全新媒体 https://api.anquanke.com/data/v1/rss 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 456 
mshta.exe
Details File 6 
dialer.exe
Details File 1 
vectirfree.exe
Details File 9 
bitlockertogo.exe
Details File 1 
killing.bat