General

  • Target

    d7435322e7afd2132125530ede7dfc32258eae892a974d79aeb551ace88aaee8

  • Size

    332KB

  • Sample

    240524-b5tg3sha48

  • MD5

    785a6f8b6b01d6da34159dba3c006db3

  • SHA1

    241b040590e5bc0dca744e6f1d1c8ffeb4ea8347

  • SHA256

    d7435322e7afd2132125530ede7dfc32258eae892a974d79aeb551ace88aaee8

  • SHA512

    ec030382e6f5e2c25bbc2a5a962eea1663923725d939108acf0618e67b5561ddec10453f678f053c3de16eb67011e7835ac027423d7bc6101eda7e935572b7e6

  • SSDEEP

    6144:2n9l7Py94LrqrCM9FI/X75OZcNqNiIlmocqa/0:2n9l7PXACwEecNqUT1qa8

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://whispedwoodmoodsksl.shop/api

https://acceptabledcooeprs.shop/api

https://obsceneclassyjuwks.shop/api

https://zippyfinickysofwps.shop/api

https://miniaturefinerninewjs.shop/api

https://plaintediousidowsko.shop/api

https://sweetsquarediaslw.shop/api

https://holicisticscrarws.shop/api

https://boredimperissvieos.shop/api

Targets

    • Target

      d7435322e7afd2132125530ede7dfc32258eae892a974d79aeb551ace88aaee8

    • Size

      332KB

    • MD5

      785a6f8b6b01d6da34159dba3c006db3

    • SHA1

      241b040590e5bc0dca744e6f1d1c8ffeb4ea8347

    • SHA256

      d7435322e7afd2132125530ede7dfc32258eae892a974d79aeb551ace88aaee8

    • SHA512

      ec030382e6f5e2c25bbc2a5a962eea1663923725d939108acf0618e67b5561ddec10453f678f053c3de16eb67011e7835ac027423d7bc6101eda7e935572b7e6

    • SSDEEP

      6144:2n9l7Py94LrqrCM9FI/X75OZcNqNiIlmocqa/0:2n9l7PXACwEecNqUT1qa8

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks