General

  • Target

    55c1973c493790c83ff847a3302e5ef80ffda4487aed51ea55aacf298a7d23e0

  • Size

    460KB

  • Sample

    240523-3qqw7adf3z

  • MD5

    426f6434f4dd9ac80adc504fb5efa6b8

  • SHA1

    8d58478c59a80d2d7601fef78b4dedd1302d3fb8

  • SHA256

    55c1973c493790c83ff847a3302e5ef80ffda4487aed51ea55aacf298a7d23e0

  • SHA512

    184d191f92079234d0e2d517d67884ca4496128ad5f900d87af21b6c1e1b9b69a193179a5a377dc5dc1040cf40048357053eaa796dbb8280c3e5c1f2ec9bb633

  • SSDEEP

    6144:cEGTH0gQp4qne7r89oQUL7nzwm+eokTl2B68iAcoUlX/Ye9bO7uS/k8/9vU7ckef:0TUgQ6LrOLw28fECbzgB9vHFn

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://stalfbaclcalorieeis.shop/api

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      55c1973c493790c83ff847a3302e5ef80ffda4487aed51ea55aacf298a7d23e0

    • Size

      460KB

    • MD5

      426f6434f4dd9ac80adc504fb5efa6b8

    • SHA1

      8d58478c59a80d2d7601fef78b4dedd1302d3fb8

    • SHA256

      55c1973c493790c83ff847a3302e5ef80ffda4487aed51ea55aacf298a7d23e0

    • SHA512

      184d191f92079234d0e2d517d67884ca4496128ad5f900d87af21b6c1e1b9b69a193179a5a377dc5dc1040cf40048357053eaa796dbb8280c3e5c1f2ec9bb633

    • SSDEEP

      6144:cEGTH0gQp4qne7r89oQUL7nzwm+eokTl2B68iAcoUlX/Ye9bO7uS/k8/9vU7ckef:0TUgQ6LrOLw28fECbzgB9vHFn

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks