General
-
Target
moviesetup
-
Size
275.5MB
-
Sample
230315-cqmlnaba45
-
MD5
0dd4212bcebeee48726cbe3e9803f64a
-
SHA1
3854ee8f07e81795cabc0bf6e5f0285e97ea72b4
-
SHA256
5c14b748a294fe00470d7b65247ae6ca4925704183b455fbad66f0552f50a7dd
-
SHA512
942506550aefc0ea7ec9c776cde3887004b03400ad6be5cd9631fda80a2cbebacd2be4d7dfde30473691ec4633d049a8a396057e50b6e04a07eff545bb6aca43
-
SSDEEP
6291456:EKEci4ILYe9E4hsy5C5A0RkBkidfRH9fu340yqc6Kf6W+:V84ILYq+hA0RkBkiVRH9Kyn6Kfb+
Malware Config
Targets
-
-
Target
moviesetup
-
Size
275.5MB
-
MD5
0dd4212bcebeee48726cbe3e9803f64a
-
SHA1
3854ee8f07e81795cabc0bf6e5f0285e97ea72b4
-
SHA256
5c14b748a294fe00470d7b65247ae6ca4925704183b455fbad66f0552f50a7dd
-
SHA512
942506550aefc0ea7ec9c776cde3887004b03400ad6be5cd9631fda80a2cbebacd2be4d7dfde30473691ec4633d049a8a396057e50b6e04a07eff545bb6aca43
-
SSDEEP
6291456:EKEci4ILYe9E4hsy5C5A0RkBkidfRH9fu340yqc6Kf6W+:V84ILYq+hA0RkBkiVRH9Kyn6Kfb+
Score10/10-
Lumma Stealer
An infostealer written in C++ first seen in August 2022.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-