General

  • Target

    SoftWare.exe

  • Size

    718KB

  • Sample

    240114-d5pv1abdcl

  • MD5

    40d224dadfe1d5feb18111068936ad3d

  • SHA1

    7647932f2825682ed9bd2e1e31d8f871b872e049

  • SHA256

    64b86228f819115f2aa47e374f42e06aaca3d038e5fb42416047a00f3e4463ef

  • SHA512

    580308d81dc3e6da010a6e09530e2b68946f483b7c45b0fb480bf3f6e01cda77d5ef31a6647768024658b6abc25b5e3353e45f9a1ac32cab7f9803b35b5f7026

  • SSDEEP

    12288:ezhS2vblERXizQb3UBbQrj18P2RUhT0/FGx0g3ImpxJjHZdCdFZF:78cbEBbWj1PGCFW0opTj5dCN

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://goddirtybrilliancece.fun/api

Targets

    • Target

      SoftWare.exe

    • Size

      718KB

    • MD5

      40d224dadfe1d5feb18111068936ad3d

    • SHA1

      7647932f2825682ed9bd2e1e31d8f871b872e049

    • SHA256

      64b86228f819115f2aa47e374f42e06aaca3d038e5fb42416047a00f3e4463ef

    • SHA512

      580308d81dc3e6da010a6e09530e2b68946f483b7c45b0fb480bf3f6e01cda77d5ef31a6647768024658b6abc25b5e3353e45f9a1ac32cab7f9803b35b5f7026

    • SSDEEP

      12288:ezhS2vblERXizQb3UBbQrj18P2RUhT0/FGx0g3ImpxJjHZdCdFZF:78cbEBbWj1PGCFW0opTj5dCN

    Score
    10/10
    • Detect ZGRat V1

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • ZGRat

      ZGRat is remote access trojan written in C#.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks