Overview

overview

10

Static

static

3

d6024bfad7...45.exe

windows7-x64

5

d6024bfad7...45.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d6024bfad7ada608f89fa3182721931c6a7342240d80f16781cb574d175ee945

  • Size

    310KB

  • Sample

    240419-d1zveagd9t

  • MD5

    63628adab7ad89cc3f30e14283bca090

  • SHA1

    f01fcdc82f04d2db76fe866e29d9c491c65e9496

  • SHA256

    d6024bfad7ada608f89fa3182721931c6a7342240d80f16781cb574d175ee945

  • SHA512

    46c0d9e407caa248d9a64d9e90ccc77257a3195432c4854ddfce1ec015c49e7084da4d13ce64c01b0f341699681833cba6caff9f305d2a9cf419f439016a50b0

  • SSDEEP

    6144:CPE6R+mX0FgmpETSmECEBurP+L8WHmWLmzF5EjtxRPan4acXuTq:CP7ImigudmEBBONGNsDEjgn45X

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://entitlementappwo.shop/api

https://economicscreateojsu.shop/api

https://pushjellysingeywus.shop/api

https://absentconvicsjawun.shop/api

https://suitcaseacanehalk.shop/api

https://bordersoarmanusjuw.shop/api

https://mealplayerpreceodsju.shop/api

https://wifeplasterbakewis.shop/api

Targets

    • Target

      d6024bfad7ada608f89fa3182721931c6a7342240d80f16781cb574d175ee945

    • Size

      310KB

    • MD5

      63628adab7ad89cc3f30e14283bca090

    • SHA1

      f01fcdc82f04d2db76fe866e29d9c491c65e9496

    • SHA256

      d6024bfad7ada608f89fa3182721931c6a7342240d80f16781cb574d175ee945

    • SHA512

      46c0d9e407caa248d9a64d9e90ccc77257a3195432c4854ddfce1ec015c49e7084da4d13ce64c01b0f341699681833cba6caff9f305d2a9cf419f439016a50b0

    • SSDEEP

      6144:CPE6R+mX0FgmpETSmECEBurP+L8WHmWLmzF5EjtxRPan4acXuTq:CP7ImigudmEBBONGNsDEjgn45X

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks