Overview

overview

10

Static

static

3

Sweet Volley High.exe

windows7-x64

10

Sweet Volley High.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Sweet_Volley_High.rar

  • Size

    133.1MB

  • Sample

    230508-vkh1dsdd91

  • MD5

    0061b9a050c60a74a488187dd141ecb8

  • SHA1

    2cb0ea6a3e65042db85be26efe305f0afa1e9f52

  • SHA256

    7b1ddca14120be041c43234bb7d9eb789133e3984d357ef08e20bdae37040875

  • SHA512

    0b2333bf5ecbf9097a1b3b20f53333ee61a1262f4c0317f00ce42a6231f831d5741ece3f631dcd7838c62ebef723ad2da59c53880863b816cb1309de6c656332

  • SSDEEP

    3145728:RfejrG9e1TzfWfwp+PMpsWqSoFxaVH42z7BO/gN3sa6GUuum8lmYGb2:RP+TyB0KUDJlN3fUt7Gb2

Score
10/10
lummaspywarestealer

Malware Config

Targets

    • Target

      Sweet Volley High.exe

    • Size

      64.0MB

    • MD5

      139e5c6ddd614e67085e0b858916aae0

    • SHA1

      25d6a15b00e0159de523c99843475547864a4b8b

    • SHA256

      020ccd761eb70cad1fadbf1b05760ed7b8aaad136a6964c2a167883913f606ad

    • SHA512

      8ad4fccf26566a4ea9be77f04e0e994273a6aaad6c02d83d71143e7d87fe43385ed5069b65935d5c2fcd105698567d61111446bdfca51db40ff95347aff03100

    • SSDEEP

      1572864:1jddrbWt9k/e++tRMjOqs89YiOnW5/QFlraV6MB4JbJez:tfWfwp+PMpsWqSoFxaVH42z

    Score
    10/10
    lummastealerspyware

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks