Overview

overview

10

Static

static

10

Setup.exe

windows7-x64

5

Setup.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    The Setup Files.rar

  • Size

    7.9MB

  • Sample

    240509-qj8r7sbd9s

  • MD5

    fd267abb1bdd2a19826d6c5d253df655

  • SHA1

    a28565cc381051ef083115cce78f80db526929b7

  • SHA256

    1ca339a6fb14ebd235d1a9292226f98ca48c0c10199df6eadc22a5430c9d960d

  • SHA512

    992c5d47c2f7b54fabebe0844c8d764fdb8d3cd5ccd939884dfd0e118eb1c4b64773d8aae26649224f143fbfda49ba7328954abcad341ebf0f6262fa3adb21e7

  • SSDEEP

    196608:NaJ+Aqx4TRPniSfu5joq7U11H0wMxB7SJqz4ncn74Rnl:Naqe/iSfu+k55L7HwG4Jl

Score
10/10
lummaprivateloaderstealer

Malware Config

Extracted

Family

lumma

C2

https://penetratedworrsyw.shop/api

https://acceptabledcooeprs.shop/api

https://obsceneclassyjuwks.shop/api

https://zippyfinickysofwps.shop/api

https://miniaturefinerninewjs.shop/api

https://plaintediousidowsko.shop/api

https://sweetsquarediaslw.shop/api

https://holicisticscrarws.shop/api

https://boredimperissvieos.shop/api

Targets

    • Target

      Setup.exe

    • Size

      2.4MB

    • MD5

      9fb4770ced09aae3b437c1c6eb6d7334

    • SHA1

      fe54b31b0db8665aa5b22bed147e8295afc88a03

    • SHA256

      a05b592a971fe5011554013bcfe9a4aaf9cfc633bdd1fe3a8197f213d557b8d3

    • SHA512

      140fee6daf23fe8b7e441b3b4de83554af804f00ecedc421907a385ac79a63164bd9f28b4be061c2ea2262755d85e14d3a8e7dc910547837b664d78d93667256

    • SSDEEP

      49152:Y8UMSn5cV2N9LNwtQ5gRR+moI1axGbYj6QAl4ImDkg7d5lROCDG5yzlC97W+uJUM:QMS5hN9OtQ5gRjoI8xGbYj6QAl4gg7dF

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks