General

  • Target

    Free hack.rar

  • Size

    291KB

  • Sample

    240224-xtytbacg9t

  • MD5

    f6de17d038b14e52091d81ca3e9f3043

  • SHA1

    8b46fe9cc6b96bc64edc4099add68409756afe5e

  • SHA256

    26d62e6fed349999eb159f73375483523132684770b5034549124069748aeb6b

  • SHA512

    4e8de03c9572236e6f4bdb1ce837b4ba6c8f0379ca8c0313eab17a37040b5cb87ffa42ace82488557b8a528b0846527f13643626e52aaadf90adc8c89d022e66

  • SSDEEP

    6144:xrYuIk6mKc/VWVAAMvnTo4ET5LDiuYAF+9Vlmowj97KK7IK2:JYAzKcJAMvRET5M9Vlxwdju

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://technologyenterdo.shop/api

https://detectordiscusser.shop/api

https://turkeyunlikelyofw.shop/api

https://associationokeo.shop/api

Targets

    • Target

      Raysen cheat/Raysen hack v4.25.exe

    • Size

      305KB

    • MD5

      f7fc7e0be60f31859d2bfe1472c3cb26

    • SHA1

      cdf4aa531e78a37894437c7b2ea806946af4c696

    • SHA256

      0d21e66230b0def998f6f6f648334444c8f9a2228833c800ef4477245b875fbf

    • SHA512

      b2e81c4c6142d24ca8912b5f5b60a9ef8e1f73b5c016ee4e66cc938a67439d12ff6096e01cd9d1f605436b9ebaff11aef882f9e9a353eb599fb1fd67348eac5a

    • SSDEEP

      6144:fLCBiGoKlMjSD1IohO98TrEjJWsOaJzEY1m3sK654i:jbDKmjSDagOCXEjwsHaY1+/c

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

    • Target

      Raysen cheat/auto-update.dll

    • Size

      46KB

    • MD5

      acb432f47d774135056921437e7d4015

    • SHA1

      811c48214c80e6111ce1229e7523d097bb09d174

    • SHA256

      2c146d5835d9a453ab824826838b47fc02acd2400e75a077e12fea5e200a19c4

    • SHA512

      05193787395c8b56026a00f63288d0ae7e5eb205b944ecac84d7e1bbb89494cab13a96750a78d22cf32db8d83aa23b0299088e02a8c10a49b8b35ce9a0a2e761

    • SSDEEP

      48:yVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVV0:H

    Score
    1/10
    • Target

      Raysen cheat/config.cfg

    • Size

      65KB

    • MD5

      4a5d9f854a06a62220952a0a3dc2f19f

    • SHA1

      5b08204c2727c2ef2fbdd924e064c3a540367797

    • SHA256

      100371c7a33b14982ef80580527ea4461e58112a78b9cdc86ae3bea0a8d790b9

    • SHA512

      9cfd69c5f3bf5a8695ac70d4e1628b05c978b993896ab7a5db9cfb07e1b41115c053133a45d1b9efd38694745c286578d1deea73faedb902e2dc5d805ccbb49f

    • SSDEEP

      48:yVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVV0:H

    Score
    3/10
    • Target

      Raysen cheat/inject.dll

    • Size

      115KB

    • MD5

      09c5c0d2b6bde72cf431f18dc33fcd4e

    • SHA1

      02549b4a238268e0c364a19ab9d663e18a4453e3

    • SHA256

      f82438975f2d96ee6bb219a481038a81d571f67cb6b57335caa416a0ca9c985c

    • SHA512

      e4ef189d30dacf3b5469955ecf65e781e5a3372c0594576128f0b9a05ebaf8f729fd10c77a1f1f53d51975d699bb01624179dfca4a3d2b23199037a32c3487b8

    • SSDEEP

      48:yVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVf:M

    Score
    1/10
    • Target

      Raysen cheat/read me.txt

    • Size

      98B

    • MD5

      c2df79b96034ba1e1498144a557c6dc0

    • SHA1

      004501fb63ba789e8fc5b1ed6e65acf35ab04add

    • SHA256

      74afb5986ca2a960c231db0d5d27dd0f762d1b8bbdb558747c908099ab835907

    • SHA512

      7978b8fa7da7e5a3bddd32908bed5615b7eea4bc55fe9547a61f3fc120b9a5e0ef7176122a057e9e942e42ab7769fe6539f811f8ad665afe0ce253bff6af1da9

    Score
    1/10
    • Target

      Raysen cheat/x32.dll

    • Size

      126KB

    • MD5

      23f7de6f354ebbd9df44fe90399a7bf7

    • SHA1

      181487388522469768c9363df6c90a14d4ee1f4e

    • SHA256

      959cb4534e42ef846ca45114d3272521a81e8753152c80fc6c59ffc6a463477d

    • SHA512

      4fe64c4569c14780d227b7409a8eab04fb22ffc4ef6d3b10024e584af06376a5f3fb5c1f70b16e67b4cbf64031e650c393b9b06a08a3ba580d5e39b619811583

    • SSDEEP

      48:yVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVE:X

    Score
    1/10
    • Target

      Raysen cheat/x64.dll

    • Size

      176KB

    • MD5

      f7f3667c0626aac27f2d8019ce4ed747

    • SHA1

      8b5b611dfd6db97366060db606159433160e3f28

    • SHA256

      feca5aa0a0beadb4a58036026bbdf9112b55852342e622a237068937d999c137

    • SHA512

      87bf1b2c54a885556986035c1b2d4d940e21aebcd9366f1f26892b1a57daddbe59d1a86ecb2c774217c87f24b6765f5d308fbda641c97c5aca061fbac7eadc86

    • SSDEEP

      48:yVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVP:8

    Score
    1/10
    • Target

      Raysen cheat/xfeo.dll

    • Size

      70KB

    • MD5

      ec02484765f910e71f34bf790dc3304c

    • SHA1

      23e69e61418d10b99ec2433f08db2de4d571399b

    • SHA256

      09921f427b5a221d72f4861030b586c61aaacb189faedc9f94e539c8f4c933aa

    • SHA512

      5009fdceaa328f9710f224eeaf544a07ebfa9616ab1dea85df33b1f3a77c9724b369c9bb59cb622ee8014b199dc1bca21dfd396868fd1a407427568b1e88a357

    • SSDEEP

      48:yVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVVVVAVVE:X

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks