General

  • Target

    Setup.zip

  • Size

    75.4MB

  • Sample

    240527-mhax1agd7y

  • MD5

    b3d9e3776367123bd92ef5d3d162cce4

  • SHA1

    33a87b666e011758473fb9d6d22570d85947b0f0

  • SHA256

    7fef60a35f7b0e6c2012364c3fbcdc8730c2c36f6a42f634adccb64032c9c0f4

  • SHA512

    83ea76297e945a7aac506b4965c563e7d67ee98b030f482ccb1b452e6345bc61ee5f3637467ee8aee55ab3c6c86d7ee94946c991515a3bfa919523507fb1d2f2

  • SSDEEP

    1572864:PsXIDRg32eo9hcPJJfUMQvTKDipaAEhoVOPDkHurnZ9HZCdk:Ps4do2TmzUnvTK5VEOLk4Z9HZN

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      Setup/setup.exe

    • Size

      448KB

    • MD5

      65af6dd3445631e8de9fcc46bc3c413a

    • SHA1

      a43e06675aac176e366211fdf1528495abcd4187

    • SHA256

      0ba4f2d3644413ac98cfa196d6c8c9b4edb2c2858641aeea207ed8fb901f1043

    • SHA512

      d98ea87ab38b519e1995f3d6d8111711af0c1994b28e532e28bf5934a6080106833721a2afff603ac764d05eefbc7805f4fc5b74105136d65b4b5acf7b33fdcd

    • SSDEEP

      12288:eOP6Mlh4fwN3QlLUNdx7HLGCUwn+kV8eFn:zP6w2IcUNdx7HK/ml8Sn

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks