General

  • Target

    3e1451fbd94c852f561fdb5332a5a8576d940d95b1a8cff4dfc0285bc9fc0b14

  • Size

    340KB

  • Sample

    240315-bdl9pacf8s

  • MD5

    e79d42e6b51653c6a459adc6e6cd0e7d

  • SHA1

    19590e4efcea7b916825669075fb59de0aae0600

  • SHA256

    3e1451fbd94c852f561fdb5332a5a8576d940d95b1a8cff4dfc0285bc9fc0b14

  • SHA512

    17f70d269b7be8fe4d8fa2b5bca88188c318991ac168d54f37237bbacaf9804e8aa7e6b81a2320bcd61d2a109728461d8082cd69e6b0ed8f1f90600b1ecaed9f

  • SSDEEP

    6144:9cfbg4zibFpLoydp2T7NJ6/mL21Zq15LWJk59VaEh6oMHgKqHxg:Ofs0IFpq6t1Zq1h5CEhXMAKqRg

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://colorfulequalugliess.shop/api

Targets

    • Target

      3e1451fbd94c852f561fdb5332a5a8576d940d95b1a8cff4dfc0285bc9fc0b14

    • Size

      340KB

    • MD5

      e79d42e6b51653c6a459adc6e6cd0e7d

    • SHA1

      19590e4efcea7b916825669075fb59de0aae0600

    • SHA256

      3e1451fbd94c852f561fdb5332a5a8576d940d95b1a8cff4dfc0285bc9fc0b14

    • SHA512

      17f70d269b7be8fe4d8fa2b5bca88188c318991ac168d54f37237bbacaf9804e8aa7e6b81a2320bcd61d2a109728461d8082cd69e6b0ed8f1f90600b1ecaed9f

    • SSDEEP

      6144:9cfbg4zibFpLoydp2T7NJ6/mL21Zq15LWJk59VaEh6oMHgKqHxg:Ofs0IFpq6t1Zq1h5CEhXMAKqRg

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks