General

  • Target

    Contract Agreement for YouTube Partnership.scr

  • Size

    1.8MB

  • Sample

    240527-l26ncafh5y

  • MD5

    a4e4a8801e98d9f663d8923de6475819

  • SHA1

    3bcfb540ecf62df7b61d19c03215eb2130061f7b

  • SHA256

    2f9a3a22aff8f16e6b390c788fe5f6e6e3c09631150f54f8235eae8945be461d

  • SHA512

    c69641ffd33c36e565428788eda9050b57ca4677b9aa5634fdc0b7f239efd6cd078b84cff3fb28086624b129b3247b63e3ef378e6daa59b1a86249978e6e989d

  • SSDEEP

    24576:+JEhYUt3QEuTGKptBcJ9K9izaY1gknlHcR2AHwCPXFoJ9VXTTViaIvufnXn5LQju:+e57BKj2f5gklHcuYoJn5i983pyu

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://counterrailcrwu.shop/api

https://horsedwollfedrwos.shop/api

https://patternapplauderw.shop/api

https://understanndtytonyguw.shop/api

https://considerrycurrentyws.shop/api

https://messtimetabledkolvk.shop/api

https://detailbaconroollyws.shop/api

https://deprivedrinkyfaiir.shop/api

https://relaxtionflouwerwi.shop/api

Targets

    • Target

      Contract Agreement for YouTube Partnership.scr

    • Size

      1.8MB

    • MD5

      a4e4a8801e98d9f663d8923de6475819

    • SHA1

      3bcfb540ecf62df7b61d19c03215eb2130061f7b

    • SHA256

      2f9a3a22aff8f16e6b390c788fe5f6e6e3c09631150f54f8235eae8945be461d

    • SHA512

      c69641ffd33c36e565428788eda9050b57ca4677b9aa5634fdc0b7f239efd6cd078b84cff3fb28086624b129b3247b63e3ef378e6daa59b1a86249978e6e989d

    • SSDEEP

      24576:+JEhYUt3QEuTGKptBcJ9K9izaY1gknlHcR2AHwCPXFoJ9VXTTViaIvufnXn5LQju:+e57BKj2f5gklHcuYoJn5i983pyu

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks