General
-
Target
Undisputed Trainer Setup.exe
-
Size
141KB
-
Sample
230320-3ah7eafg57
-
MD5
863b8932630c1a3628da03c8744f9d61
-
SHA1
96d51ea30d1216894d3f34ed1aa5fdee64cca91b
-
SHA256
58c04443880084e57fb4ea4432337595acfcefc7cec65a860928c27a7e224845
-
SHA512
e9b4156015ab68d73b128d169ac117f82df76043aac9d1fa03fe55a7a387e8d87cdcb6ffc79bc15deef8edae6e8b7c3c4ea22e57593fe97a92b707a3107a82e1
-
SSDEEP
3072:Bojm4ILlCI+4COHCyhaEtHZkOpk97oc4ILlCI+4TOHHSafx:Bd+bwaEtHLhiHt
Malware Config
Targets
-
-
Target
Undisputed Trainer Setup.exe
-
Size
141KB
-
MD5
863b8932630c1a3628da03c8744f9d61
-
SHA1
96d51ea30d1216894d3f34ed1aa5fdee64cca91b
-
SHA256
58c04443880084e57fb4ea4432337595acfcefc7cec65a860928c27a7e224845
-
SHA512
e9b4156015ab68d73b128d169ac117f82df76043aac9d1fa03fe55a7a387e8d87cdcb6ffc79bc15deef8edae6e8b7c3c4ea22e57593fe97a92b707a3107a82e1
-
SSDEEP
3072:Bojm4ILlCI+4COHCyhaEtHZkOpk97oc4ILlCI+4TOHHSafx:Bd+bwaEtHLhiHt
Score10/10-
Lumma Stealer
An infostealer written in C++ first seen in August 2022.
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-