General

  • Target

    a81de519432b6d76d9b881cff0cf9cef

  • Size

    304KB

  • Sample

    240227-d52vkafg6v

  • MD5

    a81de519432b6d76d9b881cff0cf9cef

  • SHA1

    e35a6446307b3e55db9097cee2cdeec87e6145b6

  • SHA256

    bd8c7e7ef7ae77f7f99f3408108fd9757f71141e6e990cee3d16a4d4bb17d2ce

  • SHA512

    eb10557925254fa38759998c04dab4429e8a90574a6cd4aa3e0c3fea109c4dd80dd23781a5a92a5d4501d4befb057053d3c1e33f40181db379a932f06cf41730

  • SSDEEP

    6144:qR1VpFoIbQFCgMWt14yRjfT/OlaazY660vT+YZj+0Ccdak:qR1VpWIUw/k14ojfifd60rbZQcck

Score
10/10

Malware Config

Targets

    • Target

      a81de519432b6d76d9b881cff0cf9cef

    • Size

      304KB

    • MD5

      a81de519432b6d76d9b881cff0cf9cef

    • SHA1

      e35a6446307b3e55db9097cee2cdeec87e6145b6

    • SHA256

      bd8c7e7ef7ae77f7f99f3408108fd9757f71141e6e990cee3d16a4d4bb17d2ce

    • SHA512

      eb10557925254fa38759998c04dab4429e8a90574a6cd4aa3e0c3fea109c4dd80dd23781a5a92a5d4501d4befb057053d3c1e33f40181db379a932f06cf41730

    • SSDEEP

      6144:qR1VpFoIbQFCgMWt14yRjfT/OlaazY660vT+YZj+0Ccdak:qR1VpWIUw/k14ojfifd60rbZQcck

    Score
    10/10
    • Detect Lumma Stealer payload V4

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Modifies security service

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks