General
-
Target
47676ee7d84136e879cae550f3b41754.exe
-
Size
620KB
-
Sample
230403-kwk9safb8v
-
MD5
47676ee7d84136e879cae550f3b41754
-
SHA1
56f12bb155538b082a97007b83972d29ecf4258c
-
SHA256
064d81ae81be1c4aaca1a5cf5f8631b2fc162b4d91c32968ca87429e39ff5c4d
-
SHA512
6e47d795f6c3686a7aa02afeb07c125139b00ee47875d68936e0da2b9e234cc2f57668ba9d4a26a78f9eb84585517190ccf1187da972d7230aefe04dc2cedb50
-
SSDEEP
12288:P7PQza1//MbBWEHyRITJE/O3nC+I66NqN:kzinYWoySTJf3n/6NW
Malware Config
Targets
-
-
Target
47676ee7d84136e879cae550f3b41754.exe
-
Size
620KB
-
MD5
47676ee7d84136e879cae550f3b41754
-
SHA1
56f12bb155538b082a97007b83972d29ecf4258c
-
SHA256
064d81ae81be1c4aaca1a5cf5f8631b2fc162b4d91c32968ca87429e39ff5c4d
-
SHA512
6e47d795f6c3686a7aa02afeb07c125139b00ee47875d68936e0da2b9e234cc2f57668ba9d4a26a78f9eb84585517190ccf1187da972d7230aefe04dc2cedb50
-
SSDEEP
12288:P7PQza1//MbBWEHyRITJE/O3nC+I66NqN:kzinYWoySTJf3n/6NW
Score10/10-
Lumma Stealer
An infostealer written in C++ first seen in August 2022.
-
Reads user/profile data of local email clients
Email clients store some user data on disk where infostealers will often target it.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-