Overview

overview

10

Static

static

3

7a07116fe6...f5.exe

windows7-x64

5

7a07116fe6...f5.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7a07116fe66c2288abd5511f09b30da56b11a2fff49bc9c2efe793b6b8342ff5

  • Size

    1.7MB

  • Sample

    240424-g18dbsfd83

  • MD5

    20cc0758e201225b9ce53aa91b13f8ac

  • SHA1

    ac02cac0e558c5a151902fa86d2ae4eaca684390

  • SHA256

    7a07116fe66c2288abd5511f09b30da56b11a2fff49bc9c2efe793b6b8342ff5

  • SHA512

    cc55c7fdafbbd0df8a841a1eafec2f17232fd7018345eef58dddef5bfc8de08d2bcc9f918d96c037781953500327de3bb686df1d8881d693b9e196c7b61b98cc

  • SSDEEP

    49152:QIiwiZqt7ZeI8T3brWl24+wF7bS8KEH8UW3NT6:Q9PQt7ZFeA9+pN6

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://tolerateilusidjukl.shop/api

https://productivelookewr.shop/api

https://shatterbreathepsw.shop/api

https://shortsvelventysjo.shop/api

https://incredibleextedwj.shop/api

https://alcojoldwograpciw.shop/api

https://liabilitynighstjsko.shop/api

https://demonstationfukewko.shop/api

Targets

    • Target

      7a07116fe66c2288abd5511f09b30da56b11a2fff49bc9c2efe793b6b8342ff5

    • Size

      1.7MB

    • MD5

      20cc0758e201225b9ce53aa91b13f8ac

    • SHA1

      ac02cac0e558c5a151902fa86d2ae4eaca684390

    • SHA256

      7a07116fe66c2288abd5511f09b30da56b11a2fff49bc9c2efe793b6b8342ff5

    • SHA512

      cc55c7fdafbbd0df8a841a1eafec2f17232fd7018345eef58dddef5bfc8de08d2bcc9f918d96c037781953500327de3bb686df1d8881d693b9e196c7b61b98cc

    • SSDEEP

      49152:QIiwiZqt7ZeI8T3brWl24+wF7bS8KEH8UW3NT6:Q9PQt7ZFeA9+pN6

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of NtCreateThreadExHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks