Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f1e2c84c28fc4a49de9f8f0b82de6b097166bf14e1f6f2d12e7f4d9976d06b56

  • Size

    6.1MB

  • Sample

    240509-3pnqfahb26

  • MD5

    8b3bbefcc1c79c7e7cc5d989b1f46f95

  • SHA1

    9e059da37d9ab011448339248b608d0c73b0032d

  • SHA256

    f1e2c84c28fc4a49de9f8f0b82de6b097166bf14e1f6f2d12e7f4d9976d06b56

  • SHA512

    d9fac53449690ea287f0c3faa8023bc2d13f74b591a18eb364997af21eb444c8571627560bb88c2f9e3b8a75fb21f39d490d55f6ddcfc6427f402a6cc14ee7f3

  • SSDEEP

    98304:YRnT2ZKwfLLIIxX1QT5QGiKidCQcGlENzkiC1ivwyXd7KH1tQnJw:ITerfLk66GvdCQcVPKgwyXd7nC

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://greetclassifytalk.shop/api

https://acceptabledcooeprs.shop/api

https://obsceneclassyjuwks.shop/api

https://zippyfinickysofwps.shop/api

https://miniaturefinerninewjs.shop/api

https://plaintediousidowsko.shop/api

https://sweetsquarediaslw.shop/api

https://holicisticscrarws.shop/api

https://boredimperissvieos.shop/api

Targets

    • Target

      f1e2c84c28fc4a49de9f8f0b82de6b097166bf14e1f6f2d12e7f4d9976d06b56

    • Size

      6.1MB

    • MD5

      8b3bbefcc1c79c7e7cc5d989b1f46f95

    • SHA1

      9e059da37d9ab011448339248b608d0c73b0032d

    • SHA256

      f1e2c84c28fc4a49de9f8f0b82de6b097166bf14e1f6f2d12e7f4d9976d06b56

    • SHA512

      d9fac53449690ea287f0c3faa8023bc2d13f74b591a18eb364997af21eb444c8571627560bb88c2f9e3b8a75fb21f39d490d55f6ddcfc6427f402a6cc14ee7f3

    • SSDEEP

      98304:YRnT2ZKwfLLIIxX1QT5QGiKidCQcGlENzkiC1ivwyXd7KH1tQnJw:ITerfLk66GvdCQcVPKgwyXd7nC

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks