General

  • Target

    mmpack.exe

  • Size

    284KB

  • Sample

    240221-szgd1aaa5s

  • MD5

    1b159415cc9804292fe412ae3b5ba109

  • SHA1

    2521897c4485bd509a8d21fbb2f7a87141da430f

  • SHA256

    732ce0d00a028971f29b1183a928b0158edce337cf749eec36f1afd11c022558

  • SHA512

    2c9ee8bee09f04814a7718994ae2482706f150e892bcb87e8a845c13ca5d6363bd364a19847cb3f1636e4017ce39ac73842871c916c32f88d937f5cf6e8a1f94

  • SSDEEP

    6144:dO99iypa7uCryT2BLQLWWktLpFq5TQHbBU4rDypOrdubd/DUm:o9cyg7udT2BUn0lipOkbd/9

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://technologyenterdo.shop/api

https://detectordiscusser.shop/api

https://turkeyunlikelyofw.shop/api

https://associationokeo.shop/api

Targets

    • Target

      mmpack.exe

    • Size

      284KB

    • MD5

      1b159415cc9804292fe412ae3b5ba109

    • SHA1

      2521897c4485bd509a8d21fbb2f7a87141da430f

    • SHA256

      732ce0d00a028971f29b1183a928b0158edce337cf749eec36f1afd11c022558

    • SHA512

      2c9ee8bee09f04814a7718994ae2482706f150e892bcb87e8a845c13ca5d6363bd364a19847cb3f1636e4017ce39ac73842871c916c32f88d937f5cf6e8a1f94

    • SSDEEP

      6144:dO99iypa7uCryT2BLQLWWktLpFq5TQHbBU4rDypOrdubd/DUm:o9cyg7udT2BUn0lipOkbd/9

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks