General

  • Target

    !!New_$etup_PassWrOd__2234.rar

  • Size

    5.2MB

  • Sample

    240526-t6lsqsch6y

  • MD5

    7182c17303db312ddc5831d4df4be149

  • SHA1

    96a6e6b97d371433fb6a8a95d21df5d44957300d

  • SHA256

    444c684da67d925df5493d3a7bca472b7d9995492fcb3ffb7abfdaa3b93ba298

  • SHA512

    86036a2e212d8af3ee4f3772394e09499bc7f7dbd7d32f24b7c4f93394d4e8e137c9baa882205d14493fed085cae2f05a2026ca50e7ceddf6871bf444179fa55

  • SSDEEP

    98304:ilwRtTA3z6kFBZeLItGhuEcj3eUJwXAekeczr0EQ4NA/2TKtbWjXFmDGgc:ftTAD6yZ2ItGhuPj3zmco61hmigc

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://declineforntyuekw.shop/api

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      New Setup File/Setup.exe

    • Size

      1.1MB

    • MD5

      c047ae13fc1e25bc494b17ca10aa179e

    • SHA1

      e293c7815c0eb8fbc44d60a3e9b27bd91b44b522

    • SHA256

      6c30c8a2e827f48fcfc934dd34fb2cb10acb8747fd11faae085d8ad352c01fbf

    • SHA512

      0cfb96d23b043bcb954cc307f85e5bbc349c0c8a0c6eaa335ea9a8fa19ce65b047f30ed0049562d40880400d4f70e3bb28975d6970f3ae4af6da1ba06e36d48c

    • SSDEEP

      12288:a9hZPq27B7+x3dPC4gvgdVwTzDxsVyY4YoUwpf5kpRG6xsfJAYo2R0B5YD5sW91A:STS27B7+x3E4tdS/Dxkd4YoDfZ90gLS

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    • Target

      New Setup File/aria.dxf

    • Size

      32KB

    • MD5

      5502cff214074d0ba29c3d525c91bee9

    • SHA1

      3b1f81f00014bc34bc1a4ffd6b647b585f88a018

    • SHA256

      071d849437961f8198c84f6adb1207f64de22829b926d3d4bdf5946efb49176f

    • SHA512

      848a811b15e44a8d0edbf27d434a0ca67d647e86520f0a5371dc0b16bff3681b0f16f2313fff5734cf2e379276b62b473b89bf6062c493e090fec10817fd6f49

    • SSDEEP

      768:e+S7yMHR9iv5Qn1oywceonE3XouOqda9BhmQ:471R9u5ywou29Bh9

    Score
    3/10
    • Target

      New Setup File/x64/App.xbf

    • Size

      1KB

    • MD5

      fc6f983b839f1d0702c0d40f107313fb

    • SHA1

      f0987f6305ff7b0e8d2b625ef5ad8fb5b0ce4081

    • SHA256

      358b9f84ed4326fc989fb70f5d6d17e8e268eabb476b9e3ef6270872b00189f3

    • SHA512

      f7e2b98d9898a99a14bb32d0ad478c0ea4d9713eb4424c0b1525d5e37855ed9f835db678d3ff590eaadf437c408d4a740eb3676adcee822d73a4c0e167b8e6f3

    Score
    3/10
    • Target

      New Setup File/x64/BugReporter

    • Size

      521KB

    • MD5

      29d33ee7f3fa0ee7f52ae96732c90f48

    • SHA1

      a781620a7bcff615d4dc64751b30287814200d13

    • SHA256

      b8b06487ee2c2f2a4ae25d1e7a08a9ce831539a529fe2ed0e8841e5f7c42de90

    • SHA512

      7b0076d73dc6ed561b8294ed7687f5d0d285b080b2f12bc49623690e32ccd6a2161232860f906aa151f04950587befae49793130f5f6e2ff13453a401862d856

    • SSDEEP

      12288:pFU4ZwXnyWu9wHXspsSlxuw2xyJGS3mrxWI7n3OqiHThrmotbY7rSrZWZlJmwJIH:pyellxAxyJGS3mrxWI7n3OqiHThrmotD

    Score
    1/10
    • Target

      New Setup File/x64/HDHelper_[0MB]_[1].exe

    • Size

      566KB

    • MD5

      8a179892518a2c4e8a63afa91de7bdce

    • SHA1

      e9b095c966ccc4c4900b4cf741c067d2a0f43cd4

    • SHA256

      72ece91f65a461c5023695bf5f31b5b6b5bd629dba8407524e8144f6d1e160e8

    • SHA512

      91abb220c222a89a2df27818b8385b4015128a35b7d4c43d0f497717a4e5a55dfb9dc1da3f47a49a2400ea8300d41d52277331a6c7c3437ac5cb867a4027b220

    • SSDEEP

      12288:voJoMf8uSKkd/kAseRy/M96oQD08WjWYatid4TwzSxK/G8kHcL:CEKkd/wXMwoQJW6Ya5TwzUKeH8L

    Score
    1/10
    • Target

      New Setup File/x64/VSLauncher_[0MB]_[1].exe

    • Size

      281KB

    • MD5

      7a7bb3b0e57e4fb32c57b74e78e657ad

    • SHA1

      f1dee943b1b6238b1466d83325c4099d189cd4b5

    • SHA256

      87048cff2227d2901314760618d23917cfbc5cc15fc22dc355e803c5ee5fb211

    • SHA512

      ef0c9985b640189ed9991b301cfbf9771df961e1bf67bf68c5833667db53977c9745bcfb42e059d8bb5bcd7a88253a715d86f65612dccc33514ccda3baaf24c2

    • SSDEEP

      3072:Dawahjy56hh65Ndqp9ikqtPLy0gJmU/3j41IGvQC2mCILuCW+VoNDRUiuDhJoueT:dLlavj41nDlDOO9uunwiLWyIE2n

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks