Analysis
-
max time kernel
42s -
max time network
45s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
-
submitted
14-01-2023 16:32
General
-
Target
054c96f1e64e9dae66cd570e55fe9419aebc18150f482410ba24c8c3189831e2.exe
-
Size
299KB
-
MD5
b340013465fc19be3e49e740826d95aa
-
SHA1
df03836f36ae31319ed89c4911d8041ebb030196
-
SHA256
054c96f1e64e9dae66cd570e55fe9419aebc18150f482410ba24c8c3189831e2
-
SHA512
1d57c780791041aadfe32101ba4ec5ccbe75d915c6d55ef4e40fd00bffa2257e597ba74174ecdf75624057eef6eff36649904809dbef8c9c21f12ec95489dc0d
-
SSDEEP
3072:ePXpjAoez5tGS5lbQUJHHIQutV7qSy8WrxGxaapb8pBI8jwWRjoV:SDe7VblJHHct1qSy8GIpgpRjFE
Score
10/10
Malware Config
Extracted
Family
lumma
C2
77.73.134.68
Signatures
-
Lumma Stealer
An infostealer written in C++ first seen in August 2022.
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting 2 TTPs
Processes
-
C:\Users\Admin\AppData\Local\Temp\054c96f1e64e9dae66cd570e55fe9419aebc18150f482410ba24c8c3189831e2.exe"C:\Users\Admin\AppData\Local\Temp\054c96f1e64e9dae66cd570e55fe9419aebc18150f482410ba24c8c3189831e2.exe"1⤵
Network
MITRE ATT&CK Enterprise v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
8KB
-
Filesize
104KB
-
Filesize
168KB
-
Filesize
39.7MB
-
Filesize
104KB
-
Filesize
39.7MB