General

  • Target

    PALWORLD_TRAINER.zip

  • Size

    790KB

  • Sample

    240226-yy5m4aff2w

  • MD5

    b90e4f81025d6e293646bd9a83f7b7da

  • SHA1

    f11f714c560359fce39dd601e3937190595a0c7a

  • SHA256

    61112986a4aa1f2db3e9de8600d239864fcb9987376f7109f45ae1330db3dc8e

  • SHA512

    459e9b7f2777ed24654336980ade70c328ca2daaad3d40445926413e0d509943684c40c533066d443f9e49e0ea248d517ce2d5e14d03a90e7ce1610b544311f2

  • SSDEEP

    24576:XAjoq5M7qtwDyeg2MWZifOQxl9X7eTSYiZil:XSob1HbiB9XvYiZu

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://technologyenterdo.shop/api

https://detectordiscusser.shop/api

https://turkeyunlikelyofw.shop/api

https://associationokeo.shop/api

Targets

    • Target

      PALWORLD_TRAINER.zip

    • Size

      790KB

    • MD5

      b90e4f81025d6e293646bd9a83f7b7da

    • SHA1

      f11f714c560359fce39dd601e3937190595a0c7a

    • SHA256

      61112986a4aa1f2db3e9de8600d239864fcb9987376f7109f45ae1330db3dc8e

    • SHA512

      459e9b7f2777ed24654336980ade70c328ca2daaad3d40445926413e0d509943684c40c533066d443f9e49e0ea248d517ce2d5e14d03a90e7ce1610b544311f2

    • SSDEEP

      24576:XAjoq5M7qtwDyeg2MWZifOQxl9X7eTSYiZil:XSob1HbiB9XvYiZu

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks