General

  • Target

    62a96417039d81ebf6bfe4a9dc4b631b

  • Size

    294KB

  • Sample

    240229-wtbs4shb57

  • MD5

    62a96417039d81ebf6bfe4a9dc4b631b

  • SHA1

    9b109f73ea07b2519d309e9c15fd9e70abfde821

  • SHA256

    2697f9e6bf16685bc87c81fbf74b55c8f1cd547e2e4caa2d0169b8ec75e228e0

  • SHA512

    9785631dc7110f402ab5d55478abedaa50fa08c2cdb8d3cbf8c98ef58be3cf8d171b25a625811251b6ef4475934778a446ba393c76b6cbb1eecd732770cea604

  • SSDEEP

    6144:bYj9C5XZ/Tx/ECBNkP/O5nC8rEa/aEKiAQFbsrK5x5PWcjhVkFg:UxC5Xv5NkP/KHrf/6iAQFbse3ZjhVkFg

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://technologyenterdo.shop/api

https://detectordiscusser.shop/api

https://turkeyunlikelyofw.shop/api

https://associationokeo.shop/api

Targets

    • Target

      62a96417039d81ebf6bfe4a9dc4b631b

    • Size

      294KB

    • MD5

      62a96417039d81ebf6bfe4a9dc4b631b

    • SHA1

      9b109f73ea07b2519d309e9c15fd9e70abfde821

    • SHA256

      2697f9e6bf16685bc87c81fbf74b55c8f1cd547e2e4caa2d0169b8ec75e228e0

    • SHA512

      9785631dc7110f402ab5d55478abedaa50fa08c2cdb8d3cbf8c98ef58be3cf8d171b25a625811251b6ef4475934778a446ba393c76b6cbb1eecd732770cea604

    • SSDEEP

      6144:bYj9C5XZ/Tx/ECBNkP/O5nC8rEa/aEKiAQFbsrK5x5PWcjhVkFg:UxC5Xv5NkP/KHrf/6iAQFbse3ZjhVkFg

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks