Overview

overview

10

Static

static

10

5028-1475-...ry.exe

windows7-x64

1

5028-1475-...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5028-1475-0x0000000000400000-0x0000000000456000-memory.dmp

  • Size

    344KB

  • MD5

    59c5077c357fdc78269ac417be2c7c7b

  • SHA1

    0ecdd01f55dc6c7a70416b1d5397215cb68c1b97

  • SHA256

    97eefcb83d530d77822b1130156bf02911eb4b67641139fa75ad16ffaef8bd0d

  • SHA512

    9aefdc9bd7bcf2e89ff6a9d5823bfb4609c3d2338f9d60e0041c7938a5f5080ca022b467c8a09d1d22924710857f981066719fcf7db7d85eed447be9aa972f45

  • SSDEEP

    6144:B6zhrkcWy4LFILipZmJmM2UKh41PlS4ZjOLog7HFxqkr3jbyWii8kvbp/tg9cJui:B6NkcWy4R2qKmPGSGVKH1r3jGWii3tJ/

Score
10/10
lumma

Malware Config

Extracted

Family

lumma

C2

gstatic-node.io

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5028-1475-0x0000000000400000-0x0000000000456000-memory.dmp
    .exe windows x86


    Headers

    Sections