General

  • Target

    !Files-PAsw0rds__5454.rar

  • Size

    13.0MB

  • Sample

    240223-2tg8sabg2y

  • MD5

    3c04d5b35287f053272b7dd5f523d2f2

  • SHA1

    048cc012b8ea8693cb4223d5feace5d68c5d8d8d

  • SHA256

    1c60e42d8bf363a434e0c510a2694c33626e9c400f37c4c4c62acb9f8738a587

  • SHA512

    bed195ef6afcbfa2764a41ecce2289d8ae5ca8681998eb5de51cf5532e387c584a571bd68e7e4141762c2365ab8a0c3b93dde4fe0540ab8f5db576a3c94daa31

  • SSDEEP

    393216:9UTWsyOmROcULA8XbbXWo+UDrYMwHiCQwru4:9UTWsytU/bC0EM0imv

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://controlopposedcallyo.shop/api

https://technologyenterdo.shop/api

https://detectordiscusser.shop/api

https://turkeyunlikelyofw.shop/api

https://associationokeo.shop/api

Targets

    • Target

      Set-up.exe

    • Size

      3.3MB

    • MD5

      55076afc8f8de2df8f91fb2742bcda61

    • SHA1

      c848bb01e859163b08ce4f58994b3d814dfdf700

    • SHA256

      e3cb1b8edb969533e9299c4169b12df17a01d7516df943b486a785c986ceda30

    • SHA512

      70bf3d76b86b28aa4209a51469a4b2161c4253313849217b5e1267cb17f6279235b9ed18cd975aa48227401b48887f594b3be149531750638091afc51a425d26

    • SSDEEP

      98304:WNdaWWhvT90MSGmHUkC+UH9txcv0HGM62OQy:WNdaWWhvZ0MhmHUkxUH9tx1HA

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks