General

  • Target

    Git_Installer_x64.exe

  • Size

    460KB

  • Sample

    240518-wy724sgg2y

  • MD5

    955c5f72ccbb0aea1e5ad3b237fbf7e3

  • SHA1

    c3a2972ed3c6368eb552ff73b4ad6b1330c2bcac

  • SHA256

    c1b6b917c69fd4968d9881e5bd636e8fa6fd84761da44d81b69706e072b7953c

  • SHA512

    611ff21c9654bcc9e2f58bf72aece3889cb5cc276caba1aae64ca796544f328fe3385eed1ec422598bd22c73dc5f634291da5fd3d0bcee49386b2870d58cf805

  • SSDEEP

    6144:8mTH0gQp4qne7r8tZOZC2+kRmMnhCgAkoU/DDoFmjlbyNAqlGdKhQenB78dTnoef:VTUgQ6+kAghCbUw6QEGQU23Fn

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://corruptioncrackywosp.shop/api

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      Git_Installer_x64.exe

    • Size

      460KB

    • MD5

      955c5f72ccbb0aea1e5ad3b237fbf7e3

    • SHA1

      c3a2972ed3c6368eb552ff73b4ad6b1330c2bcac

    • SHA256

      c1b6b917c69fd4968d9881e5bd636e8fa6fd84761da44d81b69706e072b7953c

    • SHA512

      611ff21c9654bcc9e2f58bf72aece3889cb5cc276caba1aae64ca796544f328fe3385eed1ec422598bd22c73dc5f634291da5fd3d0bcee49386b2870d58cf805

    • SSDEEP

      6144:8mTH0gQp4qne7r8tZOZC2+kRmMnhCgAkoU/DDoFmjlbyNAqlGdKhQenB78dTnoef:VTUgQ6+kAghCbUw6QEGQU23Fn

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks