Overview

overview

10

Static

static

1

FindTheHidden.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    FHD_GAME.rar

  • Size

    49.5MB

  • Sample

    230401-jre2jagg76

  • MD5

    5ad4cf7e22558911e3a6ca94678d435c

  • SHA1

    d33d26c3df0a9bb15bccdf878996e3791e813698

  • SHA256

    9a876facaf95ad919234256608032c0f47f9e321b6fdcdbb348477208eedac7f

  • SHA512

    edf69a02766da301b8e21258cb762ad51bef87c322503fd050891f352e7e626e7008da1d602e32450f971f75e117dac48c7f0a385baf1de5adeac3d5e092fc1c

  • SSDEEP

    786432:kBXEisfPBhJaPz3UqhaqsSZFr9AZoxJdbjxnZ/MIvLPUlRkJqM0QKimbWt62iNvA:Eqf32awRMOPbdZ/MIIlR/q8WUA

Score
10/10
lummaspywarestealer

Malware Config

Targets

    • Target

      FindTheHidden.exe

    • Size

      49.5MB

    • MD5

      a08654ef7f22bb2862f55463f6fce118

    • SHA1

      9ee3ca739208e339c23812b02fe1d12f5c932742

    • SHA256

      5569baddcfa52b9815c86d40fd4a6b5a691f0a46808fde00c35d6d6fd2975e79

    • SHA512

      363db6cdd1c8500ec79a69c4e713ba011f83913abfad40048e4aa385f1b7351dd7c712277c86ca5ac7d8db91e6d7e5b03500d6662c76bcf5f8164f9f82d49ed6

    • SSDEEP

      786432:LBXEisfPBhJaPz3UqhaqsSZFr9AZoxJdbjxnZ/MIvLPUlRkJqM0QKimbWt62iNv7:1qf32awRMOPbdZ/MIIlR/q8WU7

    Score
    10/10
    lummaspywarestealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

System Information Discovery

3
T1082

Query Registry

3
T1012

Process Discovery

1
T1057

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks