General

  • Target

    Setup.exe

  • Size

    290KB

  • Sample

    240226-vkqp8sbg8x

  • MD5

    e9fae73f2627aae89bec39ed005330de

  • SHA1

    0aa2fae77be4339bfa3c8020b3415c6de418a511

  • SHA256

    40671dacadf4d17d061ccd4f3fbcea7a9442feaa78ed38f94fd349f6b2d0b17b

  • SHA512

    b9b7d23455d46af7a2e4a1704bda882f718ef1ef843c9e880cc0efcaf326f8283a9d168b429a95f4260668f5ad5269b4e5105075a0ecd361ab8bef1aec798dff

  • SSDEEP

    6144:+sLO1vwVXHTexxdy9nHAi7kx+Z9D1GZOO9UOIj+Hxa/:LO8gInL7kx+Z98OOiOR

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://technologyenterdo.shop/api

https://detectordiscusser.shop/api

https://turkeyunlikelyofw.shop/api

https://associationokeo.shop/api

Targets

    • Target

      Setup.exe

    • Size

      290KB

    • MD5

      e9fae73f2627aae89bec39ed005330de

    • SHA1

      0aa2fae77be4339bfa3c8020b3415c6de418a511

    • SHA256

      40671dacadf4d17d061ccd4f3fbcea7a9442feaa78ed38f94fd349f6b2d0b17b

    • SHA512

      b9b7d23455d46af7a2e4a1704bda882f718ef1ef843c9e880cc0efcaf326f8283a9d168b429a95f4260668f5ad5269b4e5105075a0ecd361ab8bef1aec798dff

    • SSDEEP

      6144:+sLO1vwVXHTexxdy9nHAi7kx+Z9D1GZOO9UOIj+Hxa/:LO8gInL7kx+Z98OOiOR

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks