General

  • Target

    MeltLaunchеr.exe

  • Size

    350KB

  • Sample

    240525-lfwagsda44

  • MD5

    b109aa9603e00150bc63d52e7a57d375

  • SHA1

    7aeca5f397c98242f6726f0e7a79127daf7f0d58

  • SHA256

    8158a96438c4c741bae0453392f1c93bc14cf4138222c3c57a30e15f36c32bc6

  • SHA512

    f83c8452d514025a415646fafde373fa4a138b7d12c91d94181e5462ba365a6b6d2325bd3c1280c04b3b705ccda46731f4c1457af2e09ca0ceb4a9648ff60486

  • SSDEEP

    6144:8bvqT/2F/shsIL2Ts4+q9GdpUkb6o8Rv226RQpvtBLasR:ey6dshsILas4+q9GdpUkwv7QKnas

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://sessionannoucemenwj.shop/api

Targets

    • Target

      MeltLaunchеr.exe

    • Size

      350KB

    • MD5

      b109aa9603e00150bc63d52e7a57d375

    • SHA1

      7aeca5f397c98242f6726f0e7a79127daf7f0d58

    • SHA256

      8158a96438c4c741bae0453392f1c93bc14cf4138222c3c57a30e15f36c32bc6

    • SHA512

      f83c8452d514025a415646fafde373fa4a138b7d12c91d94181e5462ba365a6b6d2325bd3c1280c04b3b705ccda46731f4c1457af2e09ca0ceb4a9648ff60486

    • SSDEEP

      6144:8bvqT/2F/shsIL2Ts4+q9GdpUkb6o8Rv226RQpvtBLasR:ey6dshsILas4+q9GdpUkwv7QKnas

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks