General

  • Target

    d08f26a99424b2b56872d7d74cf20790_NeikiAnalytics.exe

  • Size

    929KB

  • Sample

    240520-h7srwshe99

  • MD5

    d08f26a99424b2b56872d7d74cf20790

  • SHA1

    a0347e600d664d8897010c130f285ebcab2827c1

  • SHA256

    705f11e58565ed10f4c5f9e759d6ed0a12a226a7b111eb059bea3cb72b1183d3

  • SHA512

    53d1d7b29a8b8b114e334dae97bd018a349960bab75176d83859ebed6a648e309715448d5e36565fcf2013b648dd82bd330f88e3af55381e5af3e2db1ffdb723

  • SSDEEP

    24576:p9hNAyNCx/jmewhQMFYvxTYmy6MmJADwGb2xfL9Bl6QaFR1/q:p9DC5mewhQMyvxTYMADfixjDlQ1/q

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://rankrandomotherwjsui.shop/api

Targets

    • Target

      d08f26a99424b2b56872d7d74cf20790_NeikiAnalytics.exe

    • Size

      929KB

    • MD5

      d08f26a99424b2b56872d7d74cf20790

    • SHA1

      a0347e600d664d8897010c130f285ebcab2827c1

    • SHA256

      705f11e58565ed10f4c5f9e759d6ed0a12a226a7b111eb059bea3cb72b1183d3

    • SHA512

      53d1d7b29a8b8b114e334dae97bd018a349960bab75176d83859ebed6a648e309715448d5e36565fcf2013b648dd82bd330f88e3af55381e5af3e2db1ffdb723

    • SSDEEP

      24576:p9hNAyNCx/jmewhQMFYvxTYmy6MmJADwGb2xfL9Bl6QaFR1/q:p9DC5mewhQMyvxTYMADfixjDlQ1/q

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks