General
-
Target
2fc17c5966753c0b6fa31e15399fe8c7adf3f33785dfed3e9a7fae5c9040eaee.exe
-
Size
313.3MB
-
Sample
230328-vz3y4sdh2x
-
MD5
3f4533e8364f96b90d7fcb413fc8b57c
-
SHA1
cca3ec3606de5b4973e47ca10ad36742fb3e18ab
-
SHA256
2fc17c5966753c0b6fa31e15399fe8c7adf3f33785dfed3e9a7fae5c9040eaee
-
SHA512
2027d0d09c928420d8cb54af252cef18c2582c4c0602cf7b49322d82c175d4a8a9687e179b907dfb787028f6e00272f458b768c319510e3b963a41ee1f4ef4db
-
SSDEEP
98304:+cyNUURBkRBt1lHzdYnhdowc9cDbuHn5cFO:/ymURCzlHzdLK65D
Static task
static1
Behavioral task
behavioral1
Sample
2fc17c5966753c0b6fa31e15399fe8c7adf3f33785dfed3e9a7fae5c9040eaee.exe
Resource
win7-20230220-en
Malware Config
Extracted
lumma
82.118.23.50
Targets
-
-
Target
2fc17c5966753c0b6fa31e15399fe8c7adf3f33785dfed3e9a7fae5c9040eaee.exe
-
Size
313.3MB
-
MD5
3f4533e8364f96b90d7fcb413fc8b57c
-
SHA1
cca3ec3606de5b4973e47ca10ad36742fb3e18ab
-
SHA256
2fc17c5966753c0b6fa31e15399fe8c7adf3f33785dfed3e9a7fae5c9040eaee
-
SHA512
2027d0d09c928420d8cb54af252cef18c2582c4c0602cf7b49322d82c175d4a8a9687e179b907dfb787028f6e00272f458b768c319510e3b963a41ee1f4ef4db
-
SSDEEP
98304:+cyNUURBkRBt1lHzdYnhdowc9cDbuHn5cFO:/ymURCzlHzdLK65D
-
Executes dropped EXE
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-