General

  • Target

    74fb94ba07de535e48b40eb86773e883e0d40ee55a10397526359844add1f92b

  • Size

    460KB

  • Sample

    240524-ajtehsed4z

  • MD5

    c49297876753f4cd93461e26db8b586e

  • SHA1

    ca9e6c59d61709585867a41de09429542c380a36

  • SHA256

    74fb94ba07de535e48b40eb86773e883e0d40ee55a10397526359844add1f92b

  • SHA512

    8cdb0953e129b0bb74d946d304ad9b21c0365b85b0db378ba568057c30234ec1ce0e18cc26d25fc70180680928051ba2b6829768bdd714286fcb1d359d0f00d3

  • SSDEEP

    12288:zTUgQwrx/PEWHuPYwakIS/GsTrnLXGil1erhFn:/UgnV6gYISe0rnyibgjn

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://civilianurinedtsraov.shop/api

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      74fb94ba07de535e48b40eb86773e883e0d40ee55a10397526359844add1f92b

    • Size

      460KB

    • MD5

      c49297876753f4cd93461e26db8b586e

    • SHA1

      ca9e6c59d61709585867a41de09429542c380a36

    • SHA256

      74fb94ba07de535e48b40eb86773e883e0d40ee55a10397526359844add1f92b

    • SHA512

      8cdb0953e129b0bb74d946d304ad9b21c0365b85b0db378ba568057c30234ec1ce0e18cc26d25fc70180680928051ba2b6829768bdd714286fcb1d359d0f00d3

    • SSDEEP

      12288:zTUgQwrx/PEWHuPYwakIS/GsTrnLXGil1erhFn:/UgnV6gYISe0rnyibgjn

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks