Overview

overview

10

Static

static

3

Launcher.exe

windows7-x64

1

Launcher.exe

windows10-2004-x64

10

WinRT.Runtime.dll

windows7-x64

1

WinRT.Runtime.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ImmortaL.rar

  • Size

    7.0MB

  • Sample

    240421-tejt3aef34

  • MD5

    0276583c8fd6f212ae1bb46a0da02f0e

  • SHA1

    cc64d49cf002167e90aeb5c3c0da75ec1465be67

  • SHA256

    76a8a2c9aa27318d89f60b91ee96bc8d4618bc49f42b8d18bfa044ea02fb6a85

  • SHA512

    6f84498217a6a59fd692f72b25c20c8d4e59482f026f7a30594ab1684da82af8e6e0b46e49915d2dcb9c6bbd188a7eeae7c47d469d67c46f96d616cb6c8b41bc

  • SSDEEP

    196608:nZ6TK8TxJYz+T24XtRg5GFLsk1T9uVqFkEZ5:nZ6tToqa4XvpsqFkEZ5

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://productivelookewr.shop/api

https://tolerateilusidjukl.shop/api

https://shatterbreathepsw.shop/api

https://shortsvelventysjo.shop/api

https://incredibleextedwj.shop/api

https://alcojoldwograpciw.shop/api

https://liabilitynighstjsko.shop/api

https://demonstationfukewko.shop/api

Targets

    • Target

      Launcher.exe

    • Size

      19.9MB

    • MD5

      9319baa845014b9b1b19c74d71b3102f

    • SHA1

      abd3a8d4b66c8ae234c3c364418c7f36496971c3

    • SHA256

      b5b06a1fc40c1f61198aec7becfcd62a0d3da7a19e48166b8f8e98840a2ca7fe

    • SHA512

      2619a014ae87c5942f5c672981cc7121650057c2f6e0be74426942eebf6f54d457b6f5860e9fedb83ab3257e466a4b0ad7ed4671867f8b5f46a8de91793eb45f

    • SSDEEP

      393216:QsJU/P2y1sMts1jn0xnJ6A0C2jQ1riHfqXAU6S:QsJU/uB1jn0xnJ50C2M1eUT

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Legitimate hosting services abused for malware hosting/C2

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

    • Target

      WinRT.Runtime.dll

    • Size

      389KB

    • MD5

      0966745c6b954e7bbd15459756a106c6

    • SHA1

      f6efa62a95b4f40c84341ed58c1d3c8d5af2111d

    • SHA256

      4977a1e6dcee4c3310a68e20f2879cf39b95255e29f3fd7557781e058445cb9b

    • SHA512

      ab8a07fdf72315ffaa49271faca6d0d6523b3480d53fd6f5225fdfcb41ee099e3b401872a684016ed02d347b48eae3467185b6e9dcd16994c0b7e3c562e9a047

    • SSDEEP

      6144:WlOYSCIkSjwAF56b5uuXzAOJPvcFVloAFJpR0krlFo/UkjYPqNHav96iTtq7CYm:WQvCZoKN/DelFo/tNHav96iTtq5m

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks