General

  • Target

    9d7a2b6746a576edb7c47cbcfb347a3e.exe

  • Size

    5.5MB

  • Sample

    240222-g4wtpsdc9z

  • MD5

    9d7a2b6746a576edb7c47cbcfb347a3e

  • SHA1

    b126c0c9d84ffe4ec5ec4de4e72b499d5e4b6fd2

  • SHA256

    b606a81adbe6d8f13ac96645ab571c8a09c6d384605ee03fa9124b9cc3bfac42

  • SHA512

    2ec373a403ad3729ac4f648de172b200edb39d19b85712e33b7b96a9f63c71bf96ae46a0ea95a25b4860ccaec7bcfdb134509a9deb587c5a051589e83ded50f7

  • SSDEEP

    98304:4508Z9/Ov3wSjt7LwRBvW7efINYV+pSmo0wUP9t4jaF3qBxUZ8icexANGlzAtlj:423v3wSjVwK7efZVi7vwIBhqN2A

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://unhappytidydryypwto.shop/api

https://technologyenterdo.shop/api

https://detectordiscusser.shop/api

https://turkeyunlikelyofw.shop/api

https://associationokeo.shop/api

Targets

    • Target

      9d7a2b6746a576edb7c47cbcfb347a3e.exe

    • Size

      5.5MB

    • MD5

      9d7a2b6746a576edb7c47cbcfb347a3e

    • SHA1

      b126c0c9d84ffe4ec5ec4de4e72b499d5e4b6fd2

    • SHA256

      b606a81adbe6d8f13ac96645ab571c8a09c6d384605ee03fa9124b9cc3bfac42

    • SHA512

      2ec373a403ad3729ac4f648de172b200edb39d19b85712e33b7b96a9f63c71bf96ae46a0ea95a25b4860ccaec7bcfdb134509a9deb587c5a051589e83ded50f7

    • SSDEEP

      98304:4508Z9/Ov3wSjt7LwRBvW7efINYV+pSmo0wUP9t4jaF3qBxUZ8icexANGlzAtlj:423v3wSjVwK7efZVi7vwIBhqN2A

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Matrix

Tasks