General

  • Target

    Software_1.30.1.rar

  • Size

    11.1MB

  • Sample

    240525-s3rzxahc5y

  • MD5

    6b793466d2bd5f3518ba8f652c349bbc

  • SHA1

    0074d126f0b4015d04b3261b3bdc6f82701e49cc

  • SHA256

    513d2ec0c996a97c554741d6f021dd8fb2a2637bc06047c70e26e33f71998b40

  • SHA512

    ff6e163ab3479c2d1217a4e9c69071f8d3326c25098587a53f5eb6ffb7438d4aa459a738f9def1cda9506dffb5d1964e1d89011a831158ef6fb20e20792833f4

  • SSDEEP

    196608:VZ6u+eldqUsxKGyBhqQnDPNA92ILS1XezkIFRCCXqvO2IdfzNrYLdKkt:t+eDqPozBhqQnDPNmS1X76n9J1+Kkt

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://femininiespywageg.shop/api

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      Software_1.30.1.rar

    • Size

      11.1MB

    • MD5

      6b793466d2bd5f3518ba8f652c349bbc

    • SHA1

      0074d126f0b4015d04b3261b3bdc6f82701e49cc

    • SHA256

      513d2ec0c996a97c554741d6f021dd8fb2a2637bc06047c70e26e33f71998b40

    • SHA512

      ff6e163ab3479c2d1217a4e9c69071f8d3326c25098587a53f5eb6ffb7438d4aa459a738f9def1cda9506dffb5d1964e1d89011a831158ef6fb20e20792833f4

    • SSDEEP

      196608:VZ6u+eldqUsxKGyBhqQnDPNA92ILS1XezkIFRCCXqvO2IdfzNrYLdKkt:t+eDqPozBhqQnDPNmS1X76n9J1+Kkt

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks