Overview

overview

10

Static

static

3

acab94050c...4f.exe

windows7-x64

1

acab94050c...4f.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    94s
  • max time network
    114s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19-04-2024 01:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    acab94050ce3e61fb227467c5b3c1cf22bc2956fa81399f68876bc4236458d4f.exe

  • Size

    399KB

  • MD5

    4f51306f0eefb7e09c18243cef738560

  • SHA1

    3670045354492c36ca99093e9383215dd9742569

  • SHA256

    acab94050ce3e61fb227467c5b3c1cf22bc2956fa81399f68876bc4236458d4f

  • SHA512

    e293f7afa37590c3af1d18bb7b8ba386b59540bd464475b1047431447bec1ac3dd56d1f8ce3902fc3b280d6f320da8c97adf62412e34215b8ac5d9023cd53ecb

  • SSDEEP

    6144:99bFEK5pwdfP4PMQnThNkRcqyvx7y3bNo0c4xWtOm8O:9lFEFd3qNkRcFGoZ4xWtOmr

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://pushjellysingeywus.shop/api

https://entitlementappwo.shop/api

https://economicscreateojsu.shop/api

https://absentconvicsjawun.shop/api

https://suitcaseacanehalk.shop/api

https://bordersoarmanusjuw.shop/api

https://mealplayerpreceodsju.shop/api

https://wifeplasterbakewis.shop/api

Signatures

  • Lumma Stealer

    An infostealer written in C++ first seen in August 2022.

    stealerlumma
  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\acab94050ce3e61fb227467c5b3c1cf22bc2956fa81399f68876bc4236458d4f.exe
    "C:\Users\Admin\AppData\Local\Temp\acab94050ce3e61fb227467c5b3c1cf22bc2956fa81399f68876bc4236458d4f.exe"
    1⤵
      PID:3956
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3956 -s 492
        2⤵
        • Program crash
        PID:4068
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 460 -p 3956 -ip 3956
      1⤵
        PID:5844

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/3956-1-0x0000000002DE0000-0x0000000002EE0000-memory.dmp

        Filesize

        1024KB

        Download

      • memory/3956-2-0x0000000004A90000-0x0000000004ADC000-memory.dmp

        Filesize

        304KB

        Download

      • memory/3956-3-0x0000000000400000-0x0000000002D42000-memory.dmp

        Filesize

        41.3MB

        Download

      • memory/3956-4-0x0000000000400000-0x0000000002D42000-memory.dmp

        Filesize

        41.3MB

        Download

      • memory/3956-5-0x0000000004A90000-0x0000000004ADC000-memory.dmp

        Filesize

        304KB

        Download