General

  • Target

    887a9e8cd07db8738e18d9e0ced90e58879d880fec70f223392025ed916d7c08

  • Size

    4.0MB

  • Sample

    240528-aqzvwaff2s

  • MD5

    349c7cdefcf3af82fd86807ffd5e3aad

  • SHA1

    e73511623b1d46515395814d755cc760be7dab56

  • SHA256

    887a9e8cd07db8738e18d9e0ced90e58879d880fec70f223392025ed916d7c08

  • SHA512

    f59b9beb8ff2ec3cf262a43fcea1f080974798386c12a028e82eb3390799a0b97e65571710feabe1beb9720216cda2eb67a0a3a0c66f93e3b996af5a6a6180bf

  • SSDEEP

    49152:TxrrgMwshdq8QozaJEgnKZjgWSj+LwGYwKLj/ysWgHlPyyvYhUQu10W:TCMwslm0FL+wKLjqsnbD

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://libertyliebindywv.shop/api

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

    • Target

      887a9e8cd07db8738e18d9e0ced90e58879d880fec70f223392025ed916d7c08

    • Size

      4.0MB

    • MD5

      349c7cdefcf3af82fd86807ffd5e3aad

    • SHA1

      e73511623b1d46515395814d755cc760be7dab56

    • SHA256

      887a9e8cd07db8738e18d9e0ced90e58879d880fec70f223392025ed916d7c08

    • SHA512

      f59b9beb8ff2ec3cf262a43fcea1f080974798386c12a028e82eb3390799a0b97e65571710feabe1beb9720216cda2eb67a0a3a0c66f93e3b996af5a6a6180bf

    • SSDEEP

      49152:TxrrgMwshdq8QozaJEgnKZjgWSj+LwGYwKLj/ysWgHlPyyvYhUQu10W:TCMwslm0FL+wKLjqsnbD

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks