lumma | 7f13e384f8471ee8a3fb31e09ecb312e273fe57cd825a27bf67a4f7360ffa35d | Triage

Submit
Reports

Overview

overview

Static

static

3

ab236f72d9...63.exe

windows7-x64

ab236f72d9...63.exe

windows10-2004-x64

Sharing

General

Target

ab236f72d954d59740bc0e8385648363
Size

102KB
Sample

240228-gdfpsscf22
MD5

ab236f72d954d59740bc0e8385648363
SHA1

7d029fdb435ff74c7741e4530e71fc48542e5461
SHA256

7f13e384f8471ee8a3fb31e09ecb312e273fe57cd825a27bf67a4f7360ffa35d
SHA512

f8741b8ee458575a010a76d33d92ac1051aec23d422900f5b79c2aaf38a5c630b486d59978428ac49e812ca626ea4ecdda5d3a4f3936234209d6b850e6d12ee2
SSDEEP

3072:W5NngL4hq/bl2MO2ZJcicS+9p6q61CVmpEm9A:Qjhq/1O2ZEzGB+my

Score

10^/10

lumma metasploit backdoor stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ab236f72d954d59740bc0e8385648363.exe

Resource

win7-20240221-en

lumma metasploit backdoor stealer trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab236f72d954d59740bc0e8385648363.exe

Resource

win10v2004-20240226-en

lumma metasploit backdoor stealer trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

metasploit

Version

encoder/fnstenv_mov

Targets

- Target
  
  ab236f72d954d59740bc0e8385648363
- Size
  
  102KB
- MD5
  
  ab236f72d954d59740bc0e8385648363
- SHA1
  
  7d029fdb435ff74c7741e4530e71fc48542e5461
- SHA256
  
  7f13e384f8471ee8a3fb31e09ecb312e273fe57cd825a27bf67a4f7360ffa35d
- SHA512
  
  f8741b8ee458575a010a76d33d92ac1051aec23d422900f5b79c2aaf38a5c630b486d59978428ac49e812ca626ea4ecdda5d3a4f3936234209d6b850e6d12ee2
- SSDEEP
  
  3072:W5NngL4hq/bl2MO2ZJcicS+9p6q61CVmpEm9A:Qjhq/1O2ZEzGB+my
Score

10^/10

lumma metasploit backdoor stealer trojan
- Detect Lumma Stealer payload V4
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

lummametasploitbackdoorstealertrojan

behavioral2

lummametasploitbackdoorstealertrojan

© 2018-2025

Terms | Privacy