General

  • Target

    Snake_v1.exe

  • Size

    64.0MB

  • Sample

    230423-pz318add43

  • MD5

    bcd51f6a1cba0b929f2d092a3724e317

  • SHA1

    5b974872ca0746ade05358b67995857751b72298

  • SHA256

    0a94dbcb9dc2d83d7fd7a6071bd6dc7db03c61445a0e5611a808cd2241a97511

  • SHA512

    01cfdfe2f48e091575f8a3e4de8a7a76cd23a31204811522290528e9e4d8eefe63a7eb12f38d571cdadf4ac0498508eb0987d303ff970989d88905f9744aca09

  • SSDEEP

    1572864:qjddrbWRd9okkqEzJJ3VoUr6okuIftn5dmA4O32H9:2fWRd/KzLb6ozmt+A6

Score
10/10

Malware Config

Targets

    • Target

      Snake_v1.exe

    • Size

      64.0MB

    • MD5

      bcd51f6a1cba0b929f2d092a3724e317

    • SHA1

      5b974872ca0746ade05358b67995857751b72298

    • SHA256

      0a94dbcb9dc2d83d7fd7a6071bd6dc7db03c61445a0e5611a808cd2241a97511

    • SHA512

      01cfdfe2f48e091575f8a3e4de8a7a76cd23a31204811522290528e9e4d8eefe63a7eb12f38d571cdadf4ac0498508eb0987d303ff970989d88905f9744aca09

    • SSDEEP

      1572864:qjddrbWRd9okkqEzJJ3VoUr6okuIftn5dmA4O32H9:2fWRd/KzLb6ozmt+A6

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v6

Tasks