Overview

overview

10

Static

static

10

2780-1476-...ry.exe

windows7-x64

1

2780-1476-...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2780-1476-0x0000000000400000-0x0000000000456000-memory.dmp

  • Size

    344KB

  • MD5

    e0ce11d16fa8362228769449ed17e376

  • SHA1

    0a0170dd3547f6dabe6e77621b29a9c361ae822a

  • SHA256

    3a84e8e3f3e4ac6bf1c404592c7551477682a3df4908c93471edf4534f61bcc1

  • SHA512

    d41c324f1ef5aed2cc7e984d9963eb1af01d14acf564a9dec57a5eb04ca35dc0127b13035318cfa6a49640df3d46a49b0ae725becadc612f9ef1c3be2e482908

  • SSDEEP

    6144:B6zhrkcWy4LFILipZmJmM2UKh41PlS4ZjOLog7HFxqkr3jbyWii8kvbp/tg9cJI5:B6NkcWy4R2qKmPGSGVKH1r3jGWii3tJO

Score
10/10
lumma

Malware Config

Extracted

Family

lumma

C2

gstatic-node.io

Signatures

  • Detect Lumma Stealer payload V2 1 IoCs
  • Detect Lumma Stealer payload V4 1 IoCs
  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2780-1476-0x0000000000400000-0x0000000000456000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections