Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fcc107c7aae9e1079a072e5c29e26460a1594ff5f213c797dd064965f2dbd697

  • Size

    374KB

  • Sample

    240424-lg8bfagd9w

  • MD5

    62d88827fb9ccfc3f5d7597e2b6883b1

  • SHA1

    0f1389d5e715b82a992edc6512af12724f6450f9

  • SHA256

    fcc107c7aae9e1079a072e5c29e26460a1594ff5f213c797dd064965f2dbd697

  • SHA512

    f4f9b14eb6c60d50dc8de71fc0a3a3214df5c21d20a9a2f9e824878f22d7f36ca92f711c0267ee9d1c0afe91b420ec304f31fcab311c558a2234fb0ae927c9ca

  • SSDEEP

    6144:tpIctLgefOPfgJlWm0w+1Jv0ao9b0L3ibpl/UPBxT:tpIctLgefO3ST0w+1Kzu3ibaD

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://strollheavengwu.shop/api

https://productivelookewr.shop/api

https://tolerateilusidjukl.shop/api

https://shatterbreathepsw.shop/api

https://shortsvelventysjo.shop/api

https://incredibleextedwj.shop/api

https://alcojoldwograpciw.shop/api

https://liabilitynighstjsko.shop/api

https://demonstationfukewko.shop/api

Targets

    • Target

      fcc107c7aae9e1079a072e5c29e26460a1594ff5f213c797dd064965f2dbd697

    • Size

      374KB

    • MD5

      62d88827fb9ccfc3f5d7597e2b6883b1

    • SHA1

      0f1389d5e715b82a992edc6512af12724f6450f9

    • SHA256

      fcc107c7aae9e1079a072e5c29e26460a1594ff5f213c797dd064965f2dbd697

    • SHA512

      f4f9b14eb6c60d50dc8de71fc0a3a3214df5c21d20a9a2f9e824878f22d7f36ca92f711c0267ee9d1c0afe91b420ec304f31fcab311c558a2234fb0ae927c9ca

    • SSDEEP

      6144:tpIctLgefOPfgJlWm0w+1Jv0ao9b0L3ibpl/UPBxT:tpIctLgefO3ST0w+1Kzu3ibaD

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks