Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    88651fbef4572c557550d57aab682deb655e5c38bfb9172caf3c32fbb5091a5e

  • Size

    474KB

  • Sample

    240517-hdk5yseb92

  • MD5

    e1ab31d73262bdee62de0be92463771b

  • SHA1

    aeeaa3cdd19c4e5f75a6e8c9ea48758167921308

  • SHA256

    88651fbef4572c557550d57aab682deb655e5c38bfb9172caf3c32fbb5091a5e

  • SHA512

    b06c90d6baf3cd20033e9c3f3abfa96bbd0be8583899c5d03265c41feaabe10971dce7e1ffe70f793e0709a5b37f66e7fea01834daa9871dfc1af8726b3f75e8

  • SSDEEP

    12288:Yg4yc4xKry5Flc/pRg62qoE0rjLkSAFLOXWlFp5ssal:YEHxpcBWXPrjLkSAFLplq

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://sofaprivateawarderysj.shop/api

https://lineagelasserytailsd.shop/api

https://tendencyportionjsuk.shop/api

https://headraisepresidensu.shop/api

https://appetitesallooonsj.shop/api

https://minorittyeffeoos.shop/api

https://prideconstituiiosjk.shop/api

https://smallelementyjdui.shop/api

Targets

    • Target

      88651fbef4572c557550d57aab682deb655e5c38bfb9172caf3c32fbb5091a5e

    • Size

      474KB

    • MD5

      e1ab31d73262bdee62de0be92463771b

    • SHA1

      aeeaa3cdd19c4e5f75a6e8c9ea48758167921308

    • SHA256

      88651fbef4572c557550d57aab682deb655e5c38bfb9172caf3c32fbb5091a5e

    • SHA512

      b06c90d6baf3cd20033e9c3f3abfa96bbd0be8583899c5d03265c41feaabe10971dce7e1ffe70f793e0709a5b37f66e7fea01834daa9871dfc1af8726b3f75e8

    • SSDEEP

      12288:Yg4yc4xKry5Flc/pRg62qoE0rjLkSAFLOXWlFp5ssal:YEHxpcBWXPrjLkSAFLplq

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks