Overview

overview

10

Static

static

3

0579bb2980...35.exe

windows7-x64

10

0579bb2980...35.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0579bb2980b6b30923360840edb34f35

  • Size

    172KB

  • Sample

    231229-19g3aachgk

  • MD5

    0579bb2980b6b30923360840edb34f35

  • SHA1

    57195a93089f1be4c988c12bbbed9dd91c74fa85

  • SHA256

    95909edd6bba0c81f791e457a11ed8260ac456d1f7c024112832ffe95d7e13ce

  • SHA512

    25d271ea1258ae691e82bb952ba6285ef4aa84c2d7269dd3783bc41bcc9b492150f999d98b1cdf77bda74732c5e40879ba34a0c302fbad1bed2289fa8a9eec15

  • SSDEEP

    3072:WRPcQXh2sISl4u68rFCwcLJZmWLmYIMFYvHmwG7ADBUunrfyP0rwzGlGaSC:Gkk5IS68rFUmVMKvGw4urfysQC

Score
10/10
lummaevasionstealer

Malware Config

Targets

    • Target

      0579bb2980b6b30923360840edb34f35

    • Size

      172KB

    • MD5

      0579bb2980b6b30923360840edb34f35

    • SHA1

      57195a93089f1be4c988c12bbbed9dd91c74fa85

    • SHA256

      95909edd6bba0c81f791e457a11ed8260ac456d1f7c024112832ffe95d7e13ce

    • SHA512

      25d271ea1258ae691e82bb952ba6285ef4aa84c2d7269dd3783bc41bcc9b492150f999d98b1cdf77bda74732c5e40879ba34a0c302fbad1bed2289fa8a9eec15

    • SSDEEP

      3072:WRPcQXh2sISl4u68rFCwcLJZmWLmYIMFYvHmwG7ADBUunrfyP0rwzGlGaSC:Gkk5IS68rFUmVMKvGw4urfysQC

    Score
    10/10
    lummaevasionstealer

    • Detect Lumma Stealer payload V4

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Modifies security service

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks