General

  • Target

    SoftAuthenticator.exe

  • Size

    455KB

  • Sample

    240518-wyltwagf6z

  • MD5

    690f94cb0b312050f0721e05d1f9ac4b

  • SHA1

    b65c790ef4737c4c7fd13b16b171f5af19cc1aec

  • SHA256

    e504d89566167dc539cdffd3f6fa48cf916ebd6b0007f1d6286df55a6d3c3c98

  • SHA512

    7387892a7aa56f91001d1549be5486f8a19e6c7fdde560aa46d04df77b8de6e368075a07841b1de1f12cb4591ca239c9a6bcf380e4dbf64a8eecf1bbbf2b8368

  • SSDEEP

    12288:lVGkMDTVz0Zc3ogmw4MHakn5cIO8UMYyfFt1Fn:/GkeTJ0eYgmwLn5aMYy9t3n

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      SoftAuthenticator.exe

    • Size

      455KB

    • MD5

      690f94cb0b312050f0721e05d1f9ac4b

    • SHA1

      b65c790ef4737c4c7fd13b16b171f5af19cc1aec

    • SHA256

      e504d89566167dc539cdffd3f6fa48cf916ebd6b0007f1d6286df55a6d3c3c98

    • SHA512

      7387892a7aa56f91001d1549be5486f8a19e6c7fdde560aa46d04df77b8de6e368075a07841b1de1f12cb4591ca239c9a6bcf380e4dbf64a8eecf1bbbf2b8368

    • SSDEEP

      12288:lVGkMDTVz0Zc3ogmw4MHakn5cIO8UMYyfFt1Fn:/GkeTJ0eYgmwLn5aMYy9t3n

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks