General
Static task
static1
URLScan task
urlscan1
Malware Config
Extracted
Family
lumma
C2
https://tearfulbashfulow.shop/api
https://wisemassiveharmonious.shop/api
https://colorfulequalugliess.shop/api
https://relevantvoicelesskw.shop/api
https://associationokeo.shop/api
Targets
-
-
Target
https://drive.google.com/uc?export=download&id=1bqMuy9r2J2TyDnTQ0GI3qdJBDaCOTb7O
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of SetThreadContext
-