General

  • Target

    https://repack-games.com/buckshot-roulette-v1-2-0a-hf-free-download/?req=1

  • Sample

    240408-n239bsbg9w

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://adoptionalbumgesw.shop/api

https://birdpenallitysydw.shop/api

https://cinemaclinicttanwk.shop/api

https://disagreemenywyws.shop/api

https://speedparticipatewo.shop/api

https://fixturewordbakewos.shop/api

https://colorprioritytubbew.shop/api

https://abuselinenaidwjuew.shop/api

https://methodgreenglassdatw.shop/api

Targets

    • Target

      https://repack-games.com/buckshot-roulette-v1-2-0a-hf-free-download/?req=1

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks