Overview

overview

10

Static

static

1

Software_1.30.1.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Software_1.30.1.exe

  • Size

    498KB

  • Sample

    240505-q6jftsfa42

  • MD5

    383625aa3df96d742f29ab2cd8dde227

  • SHA1

    0c1a680be8406f463c7bb83924780b40e745a4d7

  • SHA256

    68f33f85bb97c92b0c14b27230cae417820fed2bba230bc4c39c3f1b9ddb7b8e

  • SHA512

    16e1ce36c016a8d4e578db1d84e35487ffa1895ed2cf08786114b3bda12973fcaec0a0498c8593b54785e14346d740421ef35ce11f7a19948fd7affabf062499

  • SSDEEP

    12288:kZ9c2zcOz7iiTMbP/oT05jvnO4A+v6spSyL98F:Ua2b4bKyjW4A+v7ZW

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://stiffraspyofkwsl.shop/api

https://acceptabledcooeprs.shop/api

https://obsceneclassyjuwks.shop/api

https://zippyfinickysofwps.shop/api

https://miniaturefinerninewjs.shop/api

https://plaintediousidowsko.shop/api

https://sweetsquarediaslw.shop/api

https://holicisticscrarws.shop/api

https://boredimperissvieos.shop/api

Targets

    • Target

      Software_1.30.1.exe

    • Size

      498KB

    • MD5

      383625aa3df96d742f29ab2cd8dde227

    • SHA1

      0c1a680be8406f463c7bb83924780b40e745a4d7

    • SHA256

      68f33f85bb97c92b0c14b27230cae417820fed2bba230bc4c39c3f1b9ddb7b8e

    • SHA512

      16e1ce36c016a8d4e578db1d84e35487ffa1895ed2cf08786114b3bda12973fcaec0a0498c8593b54785e14346d740421ef35ce11f7a19948fd7affabf062499

    • SSDEEP

      12288:kZ9c2zcOz7iiTMbP/oT05jvnO4A+v6spSyL98F:Ua2b4bKyjW4A+v7ZW

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks