General

  • Target

    cbd2c1968efc201812143c4d37f51493f5be63865d1a106ecddfe174ff9c4505.exe

  • Size

    461KB

  • Sample

    240520-bl13tacg68

  • MD5

    884f5848d30cf185a5a71d4f8ddbcda2

  • SHA1

    a8148b8d3b8ffaa3f4acafe524b2f3bbc8c7c069

  • SHA256

    cbd2c1968efc201812143c4d37f51493f5be63865d1a106ecddfe174ff9c4505

  • SHA512

    14b3a23a05a37cb75f11ee7edeba27d63c73c9cebbf190c7b38b6dd3f182c60fdb9ee39dbd011b7be79e621674db282cce392ff464e7cdbe7ac4c5db3623b668

  • SSDEEP

    12288:HnIIAxNYp+Of87ZO533+zcjg7VYztOXFn:HIIGYpvmKuzb7gen

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      cbd2c1968efc201812143c4d37f51493f5be63865d1a106ecddfe174ff9c4505.exe

    • Size

      461KB

    • MD5

      884f5848d30cf185a5a71d4f8ddbcda2

    • SHA1

      a8148b8d3b8ffaa3f4acafe524b2f3bbc8c7c069

    • SHA256

      cbd2c1968efc201812143c4d37f51493f5be63865d1a106ecddfe174ff9c4505

    • SHA512

      14b3a23a05a37cb75f11ee7edeba27d63c73c9cebbf190c7b38b6dd3f182c60fdb9ee39dbd011b7be79e621674db282cce392ff464e7cdbe7ac4c5db3623b668

    • SSDEEP

      12288:HnIIAxNYp+Of87ZO533+zcjg7VYztOXFn:HIIGYpvmKuzb7gen

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks