Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    013b15d330a1fe6bad7f5e4037593f8a8048f5a013e73b4fc6272ddccad2e263

  • Size

    247KB

  • Sample

    240417-qkmlcsaf4v

  • MD5

    aa51d536b93a2732806401d6cbdaed90

  • SHA1

    28656412f6bf7d7f3a356b340503a6aa8be7cb32

  • SHA256

    013b15d330a1fe6bad7f5e4037593f8a8048f5a013e73b4fc6272ddccad2e263

  • SHA512

    5700a74fc293cc95e727ce3e6a8b9fecd88a66acda897d450d23afb45d4ecdebd3bf70dcabe8aca87359b23885b7cff958158d0489ae0feb94b85808b6a8b925

  • SSDEEP

    6144:pbeiqAkoYBWAowPAhfhj5U922Mlkvp0NcT:NXkoYguifha9+c/T

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://cleartotalfisherwo.shop/api

https://worryfillvolcawoi.shop/api

https://enthusiasimtitleow.shop/api

https://dismissalcylinderhostw.shop/api

https://affordcharmcropwo.shop/api

https://diskretainvigorousiw.shop/api

https://communicationgenerwo.shop/api

https://pillowbrocccolipe.shop/api

Targets

    • Target

      31b6a608393ad6cadd7eadf286795aef37260c9b99e837f1d7a1aa4e9a7f901b.exe

    • Size

      355KB

    • MD5

      cf1d6b216e37745bf725a0b327f0045e

    • SHA1

      3278b37ac35b877d3d5e9e1aff82d94bce532709

    • SHA256

      31b6a608393ad6cadd7eadf286795aef37260c9b99e837f1d7a1aa4e9a7f901b

    • SHA512

      70b4f8651efd28af344059d62886f38595a692c642b8ebf0a81a69bfa948c471d73b7b7888d4a91c97e0bbe0d44f819e3ffcdae06dccfa790c77503ec5b7130b

    • SSDEEP

      6144:aR74gEBkjnu0zpAhr5lX8+CcpsUS5YKLFBVERB:a+gEBkjnXAhFlMSpBS5Htm

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

MITRE ATT&CK Matrix

Tasks