General

  • Target

    New Text Document.txt

  • Size

    24B

  • Sample

    240525-txs6fsae2t

  • MD5

    91561aacb9fc2e708028dbaaa64de308

  • SHA1

    56b61342e3ff19c455b5f78b645a5c4402c1ea6f

  • SHA256

    6668bc4691a6691ad316b338a5829e7de3612765c50ebe4e63344bf177332721

  • SHA512

    1f3866af4a4f36ea8e367ebf9fd760cae9d27ac55fa1091de02ccf2436a304a0d3379b659d2c8ab616d6f18a0858c3eca5d11325d2ba8e6e208fc2f734831f89

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      New Text Document.txt

    • Size

      24B

    • MD5

      91561aacb9fc2e708028dbaaa64de308

    • SHA1

      56b61342e3ff19c455b5f78b645a5c4402c1ea6f

    • SHA256

      6668bc4691a6691ad316b338a5829e7de3612765c50ebe4e63344bf177332721

    • SHA512

      1f3866af4a4f36ea8e367ebf9fd760cae9d27ac55fa1091de02ccf2436a304a0d3379b659d2c8ab616d6f18a0858c3eca5d11325d2ba8e6e208fc2f734831f89

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks