General

  • Target

    esx_job_creatorneu_4.rar

  • Size

    88KB

  • Sample

    240520-p5dnhsbe27

  • MD5

    3392bc3e27721b30dab1c3937f0a28d8

  • SHA1

    ec225eb4eb4f94e03f3c682229bcaa4fe7e74008

  • SHA256

    656377d0b9fed711a106596e0e97695805b100f8173fda6f0a9629647975dcf4

  • SHA512

    dbc58e0de5790a8101b765f0d6d2b404d83ad9b69d5b517e6b3a4c8752f8a18d71a2ac7a24c2bcd7ee036b2122fe90dc0769c21261b385cd957905ced36f17b2

  • SSDEEP

    1536:2U+dmeu6paNLdE1KqvPyuCBKtUr4luUdIev9ab34Rn4HEWqi/fuRxR0:NNLGI4PyuC20QuUl8sRiq4ExR0

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://cleartotalfisherwo.shop/api

https://worryfillvolcawoi.shop/api

https://enthusiasimtitleow.shop/api

https://dismissalcylinderhostw.shop/api

https://affordcharmcropwo.shop/api

https://diskretainvigorousiw.shop/api

https://communicationgenerwo.shop/api

https://pillowbrocccolipe.shop/api

Targets

    • Target

      esx_job_creator/cl_config.lua

    • Size

      845B

    • MD5

      5cdd5062100e716c3ab67c5857a77765

    • SHA1

      95dede51afd90662f90aba78c6c20d7839edc62e

    • SHA256

      18de5ec1cb16352aaece22edc5b7a8eb69af3956c671ccedb76243e50f62994f

    • SHA512

      d0b9cc53d5274f754816fbad3e2dfe0f7d4b263149eb1f8d7e6f4f88a77ee0b988d92e43bb8944479d0732db838f35f19f2967939546c20896dd92d1f45e12ef

    Score
    3/10
    • Target

      esx_job_creator/client/actions/checkvehicleowner.lua

    • Size

      1KB

    • MD5

      8c59badb29962cf0404a05fb24a4dd6e

    • SHA1

      4d1af6e76841b015231d72761142b7a81ae9d5d3

    • SHA256

      870b7f60cdd898182467a8996f9a6214e5aac734a05af737b17306bd610fea48

    • SHA512

      ac9a55485f6f6cba3c4d20948e580bab5890cd1dbee9a0a438d2d276c28812caed1b13a316417a4765aed1d47478d8a6a1b38e2c52bbf2d233ac17e1f76a5587

    Score
    1/10
    • Target

      esx_job_creator/client/markers/crafting_table.lua

    • Size

      4KB

    • MD5

      772b26a3d7b7322096a93858b6a9262a

    • SHA1

      11455f2bb568c8dec0e7cd46638faafdda48fd46

    • SHA256

      6b1f7f7f85590c495973e1515d11a3dc50f7070f5007364471b77cc9ecbc6b5c

    • SHA512

      9c41583a7d2491d721691e26a6cee9f42a3d08feb50492a926c2aad647a5d7af989c3533e922ce9117ba5338180c592c14898635adea6ae205180d80df4f8b5e

    • SSDEEP

      48:QIDYrueXFcOOYJeKyoNImyvLconJvKdocYzzfPeAe0BFqsFSgFBF+FMHr/Mf:5cieXFZhJeK0mEbJvKJGf2ZEVd60Mf

    Score
    3/10
    • Target

      esx_job_creator/html/index.html

    • Size

      39KB

    • MD5

      8c8cafe29572c45304cf12fbef9a6e91

    • SHA1

      c94f6939237d026cbb33923fc9346ce44ad2e1ca

    • SHA256

      6a47b24a5de04f88b72c66bdacb4651381d592ff2419b1b5adb4e73c95fb9e25

    • SHA512

      be6b7ff1c53f2d04f5b49e087f0b860e359db5865d93d771d16db65c2e8cde5c2a7d0c2d0a482174a53c49e2569a0976038df32f2dac25e4c7c62629a848e536

    • SSDEEP

      384:mKyj2xNqFPhKlQztXR0D1ao1haYDLg7gQrhar28wmWoYhaPzO1NlJK1gbMgwctDX:m/amypbHk97Gm

    Score
    1/10
    • Target

      esx_job_creator/html/index.js

    • Size

      90KB

    • MD5

      6461b82c4691a52f5cf88f31d2951419

    • SHA1

      9982ce239a58fc266ad52778513230bf907ab211

    • SHA256

      186d6f90d50c43752a050fb7f36b8ddb2977c2cded9b099c83c61e261a770709

    • SHA512

      e3ce80ad90acf1ccd27fbb741566aa55e5c4e5a90b398421b027a5742dcb5398af8b079181fa1e3af08e66c7f2770c0148590bc8a202d11f9319afeb4e5dcb65

    • SSDEEP

      1536:bV9ya+xVHvlLuojVXEnNllDIPXfnc7yhmdQZ2t5:mDvlLuojRINllEPXfnc7pWZ2t5

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

MITRE ATT&CK Enterprise v15

Tasks