Overview

overview

10

Static

static

1

STAR WARS ...up.exe

windows7-x64

10

STAR WARS ...up.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    STAR WARS Jedi Fallen Order Trainer Setup.exe

  • Size

    141KB

  • Sample

    230401-r46n1saf58

  • MD5

    25a9688348b8a423b6459a62f013f9b2

  • SHA1

    cd41c84250757633ee4a2802ed447eb98719bfe4

  • SHA256

    336cd19c7a8b2f3ca8caca28150974099e524cea2fa8f08de617695cd8e903ec

  • SHA512

    909b3b12374f550dc87df2e590c07925816a0eee40bc5d04ddfedb4bf7f5d5ac671c4e12786e86d6c41335590a4ef881a4c3cd200eb53d9e6a2ed294299bbc15

  • SSDEEP

    3072:Bojm4ILlCI+4COHCyhaEtHZkOpk97oc4ILlCI+4TOHHSafx:Bd+bwaEtHLhiHt

Score
10/10
lummadiscoverystealer

Malware Config

Targets

    • Target

      STAR WARS Jedi Fallen Order Trainer Setup.exe

    • Size

      141KB

    • MD5

      25a9688348b8a423b6459a62f013f9b2

    • SHA1

      cd41c84250757633ee4a2802ed447eb98719bfe4

    • SHA256

      336cd19c7a8b2f3ca8caca28150974099e524cea2fa8f08de617695cd8e903ec

    • SHA512

      909b3b12374f550dc87df2e590c07925816a0eee40bc5d04ddfedb4bf7f5d5ac671c4e12786e86d6c41335590a4ef881a4c3cd200eb53d9e6a2ed294299bbc15

    • SSDEEP

      3072:Bojm4ILlCI+4COHCyhaEtHZkOpk97oc4ILlCI+4TOHHSafx:Bd+bwaEtHLhiHt

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Install Root Certificate

1
T1130

Credential Access

Discovery

Query Registry

5
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks