Overview

overview

10

Static

static

1

Minecraft.exe

windows7-x64

1

Minecraft.exe

windows10-2004-x64

10

Resubmissions

01-04-2023 22:09

230401-1247vaed9x 10

01-04-2023 22:05

230401-1zjs5aed7x 10

01-04-2023 22:01

230401-1xfcxsed6t 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Minecraft.exe

  • Size

    3.3MB

  • Sample

    230401-1xfcxsed6t

  • MD5

    0501b8eb39f00dcaa3c89ccec2fbde17

  • SHA1

    cb7b82a5d02a2b5ea9c16b5083015c832b556405

  • SHA256

    161ba4c1b21cd20b15573f0ccfc4a5cbab8dedd94c722cd60afb8551d8d91dc2

  • SHA512

    4ab6a3fd31c7551578f07ada264bb93a22eb16f75fdbcfaecf4c0861535a2f631082da5f6003ff9f57fda231e783cbf200caa6a6d6bdefbe08d64f33c67855b3

  • SSDEEP

    49152:FyFWKUkiGqdO+huQ0Mm5aIHdkQ3qBge6jXdTv8JGo2WEWxm5PMdFH0U7T0f6mfb+:FmUkifdnI3eo8Uo2WElEk+

Score
10/10
lummastealer

Malware Config

Targets

    • Target

      Minecraft.exe

    • Size

      3.3MB

    • MD5

      0501b8eb39f00dcaa3c89ccec2fbde17

    • SHA1

      cb7b82a5d02a2b5ea9c16b5083015c832b556405

    • SHA256

      161ba4c1b21cd20b15573f0ccfc4a5cbab8dedd94c722cd60afb8551d8d91dc2

    • SHA512

      4ab6a3fd31c7551578f07ada264bb93a22eb16f75fdbcfaecf4c0861535a2f631082da5f6003ff9f57fda231e783cbf200caa6a6d6bdefbe08d64f33c67855b3

    • SSDEEP

      49152:FyFWKUkiGqdO+huQ0Mm5aIHdkQ3qBge6jXdTv8JGo2WEWxm5PMdFH0U7T0f6mfb+:FmUkifdnI3eo8Uo2WElEk+

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks