General

  • Target

    579f34e36bcb6e90957f54fb98a154ec08ba19209056d876fd336162916d1dff.exe

  • Size

    320KB

  • Sample

    240408-bvwvfscf7w

  • MD5

    d4dcd93f07c7005659959843645a849d

  • SHA1

    5d2d5083391960a91b31fa3ff54181daa7952dce

  • SHA256

    579f34e36bcb6e90957f54fb98a154ec08ba19209056d876fd336162916d1dff

  • SHA512

    b1e867f59a3c6491d793cb9059bb9b6f3ad22e6200114adad2c5c9bda5e5bc8d44dc8ddf7db33a145ae25fdc15ae15f7e123b644b7b77c65b543a7a7b78855f5

  • SSDEEP

    6144:9h2Flv5uGTXlgRSS1WKwYMcziuttV+t/DuO6gP+z:KvLrlgN8KwiRn+tr8gWz

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://birdpenallitysydw.shop/api

https://cinemaclinicttanwk.shop/api

https://disagreemenywyws.shop/api

https://speedparticipatewo.shop/api

https://fixturewordbakewos.shop/api

https://colorprioritytubbew.shop/api

https://abuselinenaidwjuew.shop/api

https://methodgreenglassdatw.shop/api

Targets

    • Target

      579f34e36bcb6e90957f54fb98a154ec08ba19209056d876fd336162916d1dff.exe

    • Size

      320KB

    • MD5

      d4dcd93f07c7005659959843645a849d

    • SHA1

      5d2d5083391960a91b31fa3ff54181daa7952dce

    • SHA256

      579f34e36bcb6e90957f54fb98a154ec08ba19209056d876fd336162916d1dff

    • SHA512

      b1e867f59a3c6491d793cb9059bb9b6f3ad22e6200114adad2c5c9bda5e5bc8d44dc8ddf7db33a145ae25fdc15ae15f7e123b644b7b77c65b543a7a7b78855f5

    • SSDEEP

      6144:9h2Flv5uGTXlgRSS1WKwYMcziuttV+t/DuO6gP+z:KvLrlgN8KwiRn+tr8gWz

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks