Overview

overview

10

Static

static

1

Setup.exe

windows7-x64

3

Setup.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Setup.exe

  • Size

    460KB

  • Sample

    240423-tgy2rshg28

  • MD5

    ce9903e5b7a9e6c90024b0a464b41563

  • SHA1

    f6d2a961a83eeff8d37fc8b43530451997a23966

  • SHA256

    bce765dc1c317a4a09000a228a3ce7ba93d802fbb5c7934618f847f5c467aae0

  • SHA512

    3c7aae290acd1701a7035519db4dabc4a26ac36138cfa16947d3ee24cfc30df45fcad1cbd251802c9791a071fafeafe2ed3631f26f1806ca3295ab66a71d49e5

  • SSDEEP

    12288:bxFiAgK2dK2csCm22WFg4wWivbSmZm6p2:LMK2tCOmgJWiWUj2

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://alcojoldwograpciw.shop/api

https://productivelookewr.shop/api

https://tolerateilusidjukl.shop/api

https://shatterbreathepsw.shop/api

https://shortsvelventysjo.shop/api

https://incredibleextedwj.shop/api

https://liabilitynighstjsko.shop/api

https://demonstationfukewko.shop/api

Targets

    • Target

      Setup.exe

    • Size

      460KB

    • MD5

      ce9903e5b7a9e6c90024b0a464b41563

    • SHA1

      f6d2a961a83eeff8d37fc8b43530451997a23966

    • SHA256

      bce765dc1c317a4a09000a228a3ce7ba93d802fbb5c7934618f847f5c467aae0

    • SHA512

      3c7aae290acd1701a7035519db4dabc4a26ac36138cfa16947d3ee24cfc30df45fcad1cbd251802c9791a071fafeafe2ed3631f26f1806ca3295ab66a71d49e5

    • SSDEEP

      12288:bxFiAgK2dK2csCm22WFg4wWivbSmZm6p2:LMK2tCOmgJWiWUj2

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks