General

  • Target

    !!@P@ssWords_2024_Set_Up_#.zip

  • Size

    14.6MB

  • Sample

    240227-3gywfaeb44

  • MD5

    079b4a2c6e44173ccc6715e0896a0326

  • SHA1

    0ea8aec2e613d3f7dcfed2141fbc73c95e34f9c3

  • SHA256

    e7bf5558d5445eb2f7e3d0cd4001a54281293f98230b23522f6d444afa4bc9eb

  • SHA512

    d5315f5439d390b167da53206f85f5e75b5185fd458efa273834c4ffd89fa05053cd4c48fa29531482d6d54e0a8233520e46cefde07b6691d5659c87894af05a

  • SSDEEP

    393216:w7zCU8kW+epvG3/1y6trWPnhKowSYs+ygC:w7NShm/dNWnhKad

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://forknegotationaow.shop/api

https://technologyenterdo.shop/api

https://detectordiscusser.shop/api

https://turkeyunlikelyofw.shop/api

https://associationokeo.shop/api

Targets

    • Target

      Set-up.exe

    • Size

      3.3MB

    • MD5

      55076afc8f8de2df8f91fb2742bcda61

    • SHA1

      c848bb01e859163b08ce4f58994b3d814dfdf700

    • SHA256

      e3cb1b8edb969533e9299c4169b12df17a01d7516df943b486a785c986ceda30

    • SHA512

      70bf3d76b86b28aa4209a51469a4b2161c4253313849217b5e1267cb17f6279235b9ed18cd975aa48227401b48887f594b3be149531750638091afc51a425d26

    • SSDEEP

      98304:WNdaWWhvT90MSGmHUkC+UH9txcv0HGM62OQy:WNdaWWhvZ0MhmHUkxUH9tx1HA

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

    • Target

      libX11-6.dll

    • Size

      1.2MB

    • MD5

      3cd9af46753f2a618d15157372d0d2bc

    • SHA1

      f2a1781b1a6d33338db4d9725b28f15d8a410903

    • SHA256

      497471497886f18ca16f7facab7d76dc9bfadd69deb9c6e4ea9bdc0869a15628

    • SHA512

      925097106554f6eac698ba933e32fb82c1405c7ccfe284b27f1558e9ab46139506b1e981721aeafaf2e0d595dbdfce3587c4056c6920fdffb0b2f2bdbdcdb38d

    • SSDEEP

      24576:uA7S97BMxq0REUm75horlhVwwf7JtdVrd:ud9VMxq0REUm7IrlhVd7d

    Score
    1/10
    • Target

      libXau-6.dll

    • Size

      20KB

    • MD5

      b6f0655bed934503621fcf94ba449a19

    • SHA1

      f0a5d9eefff5f3bcd2e23b9db748c50cffc1c6e8

    • SHA256

      0da1f856d92d6b95f10ed8c3f629cd15468c906de9352fb4ae629139d1412eed

    • SHA512

      77a10ae1748e5d76288c59933f3f41d4dc7a690b1f2bc9bff0b761f9f2c5331f868dc0259ffe4c4672e1806c33f3f9d0fe0a8b09b10e06333d2590f623c5b284

    • SSDEEP

      192:vdBaTJcGAV5S55Nv8ekSoifItD33VBBmBJI3b5Ud5kbQbDTHlNspsorvgAFa2jf7:lBwcGAV5S55ZkBpTVTuI3dUd5GFoCJg+

    Score
    3/10
    • Target

      libXdmcp-6.dll

    • Size

      28KB

    • MD5

      7d4f4d3bc6ab6c3ea2097a7ecd018728

    • SHA1

      2434fbad089ac85eda43c0b0e911ab437b4dfe63

    • SHA256

      7705851ba047a8154402aca92621b60be0e0e9d9b52b19bf8be540305bd53dba

    • SHA512

      f9b64cbcd7c7c7b4e942c3da74fb280762d038f974fc23d1e0431b15787aefc87464cda121aa8fccf499af46e345dd65aa5fb5cfee1cb45dba6e5dd79b01a1d8

    • SSDEEP

      384:sEZJxxKcB6SOd08J0DBljbG4H80iIOitbr0iIOi1Nk6qTdOoTcFbf3IU2xRov+h2:sEYWnJH80Qi0Q+ZOcFDR27e

    Score
    3/10
    • Target

      libdl.dll

    • Size

      17KB

    • MD5

      ed925bdab51f49813686b62eb82fb4a4

    • SHA1

      bc7c742b92a5b47089e0b400a8a80bb217e775fe

    • SHA256

      e1646c7778c24407a17881908037a49ecfcb5a980d155212d544302653a3ef62

    • SHA512

      5be99a6b0e2091fe37ff50d5a9c4fa789db27b5ba108801e4d18e99ae584ae1bc91ba3339916dff8a323155815e660f43ca54ffcc7c14c1e3f90600aedb54bd8

    • SSDEEP

      192:9oqX4Maf/9pG1cBQS6YEn8+K8fZkkLGM2u5YiXNDTPsd9/9ZidfuOiSLU8:9XX4My/9pG1cBQS6nb6kqu28wOY8

    Score
    1/10
    • Target

      libgcc_s_dw2-1.dll

    • Size

      114KB

    • MD5

      d35376c0d447108b2f9d64d4c40014f8

    • SHA1

      c68129e8bf6cdaaa318c5aad8974efbc2b7ce39a

    • SHA256

      c7544e1f9927afdf6e8cd7063020b572e60fe8f00af39227eb831d331df38225

    • SHA512

      c46af0bbd3bca6e12125750a5b1ca4f17f85f84729b1c1c01ee76de3704bcdb090212202cf449458833f8ee92e9a46c8758cbd069747de534e2984dccbe9f24d

    • SSDEEP

      1536:YkTNSPvyLV9dUT+PspQ+2Q4p2VtjByBzEgezt2f38hD99/E3oiHjyYIx7s:YZilU6PspQ+2zsBy2q8hD83oiHjyYA7s

    Score
    3/10
    • Target

      libwinpthread-1.dll

    • Size

      96KB

    • MD5

      c6e473bbed2fa26953bebfdd0b66419f

    • SHA1

      226e16684e02c6331f7ee82d02d058e2c55f8ba5

    • SHA256

      620a7e658af05cc848091b8a639854b9b15700a9061b4a3d078523653133a4af

    • SHA512

      277419eafcec04618304f19b8b5b4aa55e0233fd6118d92a41d51447f210be382aac9098f3476b9d5891ec180c4d3450fa556705e6cd0e6e2b414097860f0e9b

    • SSDEEP

      1536:IIW8gl4cRxGgURT1nJesB6fyIer2UWrSvTEfqRkb9VhW4iI4im3YcoF:Ieg9xGznJJFmATEYkbviI4im3YcoF

    Score
    1/10
    • Target

      libxcb-1.dll

    • Size

      132KB

    • MD5

      a4212be49e5ce8f3bf3950ca32c4bf14

    • SHA1

      53f8e986e5fa3844eb73f063ed01772b53bc2504

    • SHA256

      394d2d862f2ddce71f28d9b933b21a7d6c621c80ef28652574f758f77f01f716

    • SHA512

      74520d3b3749d2b61e8a970c1fb29c588f98ce477eac4ced8837420153a6e739303aca15ed7d1e070125afa7f3ee32e452815ef1af135f8ed39ef2fce9d333ab

    • SSDEEP

      3072:aIGpdymum+ToZU+DXGzm7YVB7h0We49UP9PXrW:9mTj++zGzmcVB7h0h49UP9/rW

    Score
    3/10
    • Target

      libxcb-image-0.dll

    • Size

      25KB

    • MD5

      a3718d24f0e6eae9d6121a1219381ae9

    • SHA1

      a3377f64d8fb6162f6280d3d924626c1fc6a2fe7

    • SHA256

      cb220267fb0116b298bab6a09a764420d630c52026f7d750f8ffca4818389327

    • SHA512

      43f9c760be222490d43cbd9589b4afbc64759919993a1957a13a753cfcc9d94059dba0b5400a745c377c7bea1f02f4f8f6f952bee5b7ed33f6a49efaec62e9f6

    • SSDEEP

      384:MQg1oL5xGT8So2/8iC6KcIId6dTGtDVHJsH9I8qxeHt6Lboi7:1g4i8i5EdTUpGdrBMLV

    Score
    3/10
    • Target

      libxcb-shm-0.dll

    • Size

      19KB

    • MD5

      557ed85a1d8a3308e552a77a9902e8cf

    • SHA1

      a9acf7a1db500a734e95038b29c0bd90f7af59e7

    • SHA256

      e102c9c5b22ceb60dc516ab4124bea8ec8e808b08eec48ea7ac674d13fca82ef

    • SHA512

      110acfc0b886a1ff77b5452e2f813213630ba2eb4610e06942a59da78e516e05893b049c0d1ddcc077ebabb3a9490cf84fb41f31b62822c9365b60a1b38fd4b8

    • SSDEEP

      192:w/gaEEPQOv7AV2SbsZ/oBtUoBx1tFnMDRlqbE9ubTtEHL+zJjIOaDTTsGzXKMy73:MgIv7AV2SbsoBCoBntUSd7z0y74Yd97

    Score
    3/10
    • Target

      libxcb-util-1.dll

    • Size

      23KB

    • MD5

      ee6788d3d3750421e01519a27f86634e

    • SHA1

      48f4c7dc7bd1208f07e4176e78f035d36682d687

    • SHA256

      b5acf358ff97127eac9ef4c664a980b937376b5295ef23d77ee338225de10d60

    • SHA512

      12ef0ac4cf9c8461044317e693bcfabdb4beb34a222b635ba50f6652b5a91b92ff20cb19e916ac60dca3e8314b7d8cec710a1c730374bb8f260b8d94f57c9775

    • SSDEEP

      384:FlSwg+49czS++g6Od6e4um1J47E6Lx7Ow7qOocOS1:FlWgPdX66wwQJk

    Score
    3/10
    • Target

      zlib1.dll

    • Size

      90KB

    • MD5

      73b88d602d47fbc6acfc6b7f3df37da5

    • SHA1

      9d73d4f11e77c4f62bef4d4ebdc8f03e3265ff1f

    • SHA256

      700eef3c3e133981d6af6c3da776575a6e3961a43123d104878d2737d895d5c7

    • SHA512

      f9b00d665a9365dfd8233641d85e88479da86a1b5b5e9adf6734097b26ee5cd74c0b724709962ad9ec3f3b2e866116dde3c7a4b6118fb96da1ec0348b71160fe

    • SSDEEP

      1536:JQrGMvscpi5FEexSwxSFQjF2P5kzfWan9SS3nToIfHIOQIOqx9CVx+:JahexSw8FQjF2wSgTBfpGqPAx+

    Score
    3/10

MITRE ATT&CK Matrix

Tasks