General

  • Target

    file

  • Size

    311KB

  • Sample

    240224-w5y3saah48

  • MD5

    89d059eb59969822bc99894c0171b0ce

  • SHA1

    b67fa9946354dfbe74a1df92b2f709cf5bea8b54

  • SHA256

    a0d8506547614bcdc0f772601a5efdbf5dddc8385c0ea5aeb971537bead03d30

  • SHA512

    84ec53f15d3218aa6171f9f257828b5d94120a9570b95d57fc8e282a04182ce0a569473e2d446bd54a6ff76225f7f184ecdf1895e4fdbaf963bcd43181137f3e

  • SSDEEP

    3072:ui1gAkHnjP/Q6KSEy/RHNPaW+LN7DxRLlzglKdQwq:HgAkHnjP/QBSEqtPCN7jBdQwq

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://technologyenterdo.shop/api

https://detectordiscusser.shop/api

https://turkeyunlikelyofw.shop/api

https://associationokeo.shop/api

Targets

    • Target

      file

    • Size

      311KB

    • MD5

      89d059eb59969822bc99894c0171b0ce

    • SHA1

      b67fa9946354dfbe74a1df92b2f709cf5bea8b54

    • SHA256

      a0d8506547614bcdc0f772601a5efdbf5dddc8385c0ea5aeb971537bead03d30

    • SHA512

      84ec53f15d3218aa6171f9f257828b5d94120a9570b95d57fc8e282a04182ce0a569473e2d446bd54a6ff76225f7f184ecdf1895e4fdbaf963bcd43181137f3e

    • SSDEEP

      3072:ui1gAkHnjP/Q6KSEy/RHNPaW+LN7DxRLlzglKdQwq:HgAkHnjP/QBSEqtPCN7jBdQwq

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks