Overview

overview

10

Static

static

3

file.exe

windows7-x64

5

file.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.exe

  • Size

    3.0MB

  • Sample

    240507-rwwh3sbc4w

  • MD5

    54e97708c9714c69bd34300ea9f397d6

  • SHA1

    856d1b239cefa1b487bb4ae6bcc99741dbcf0b22

  • SHA256

    59389ead2fa31decb31a25cfbe8d9859d831ef50bc21f9cde1aeb3c074b6d568

  • SHA512

    b89bd6c589a61e7e6ef54ffcbd8a4684076874beaa2440155e768ef18308f94ce024b12c8ae4b1e5abf9c4aeecbd39b98b66ea66af22419a744be33e6c7bba0b

  • SSDEEP

    49152:UB4Jd6QzY94VGMtTL4U86O4WZpG1KNq0PxNI:JPx4D8Ot5xq

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://sweetsquarediaslw.shop/api

https://acceptabledcooeprs.shop/api

https://obsceneclassyjuwks.shop/api

https://zippyfinickysofwps.shop/api

https://miniaturefinerninewjs.shop/api

https://plaintediousidowsko.shop/api

https://holicisticscrarws.shop/api

https://boredimperissvieos.shop/api

Targets

    • Target

      file.exe

    • Size

      3.0MB

    • MD5

      54e97708c9714c69bd34300ea9f397d6

    • SHA1

      856d1b239cefa1b487bb4ae6bcc99741dbcf0b22

    • SHA256

      59389ead2fa31decb31a25cfbe8d9859d831ef50bc21f9cde1aeb3c074b6d568

    • SHA512

      b89bd6c589a61e7e6ef54ffcbd8a4684076874beaa2440155e768ef18308f94ce024b12c8ae4b1e5abf9c4aeecbd39b98b66ea66af22419a744be33e6c7bba0b

    • SSDEEP

      49152:UB4Jd6QzY94VGMtTL4U86O4WZpG1KNq0PxNI:JPx4D8Ot5xq

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks