General

  • Target

    0b7e08a8268a6d413a322ff62d389bf9.exe

  • Size

    1.2MB

  • Sample

    240530-nd92zafd7x

  • MD5

    0b7e08a8268a6d413a322ff62d389bf9

  • SHA1

    e04b849cc01779fe256744ad31562aca833a82c1

  • SHA256

    d23a10b3ff0c565ea8ee7f54bcded0582e1e621ebad69d4523d6746f6d8e0e65

  • SHA512

    3d226673e30bbbc27e0a5a6c64bf81eca475c697486b20141df7975bef97901d4865b88f41937f5e3dd00b437f24f91493f80cb69aa366b7a49cd17b26197ba4

  • SSDEEP

    24576:i3KN/uUnwZcPggVmmNp7c/8B2LF8jfjiKriA4BthZ:i3KDwZqggVmmH7F258jfjiKr/4BB

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://detailbaconroollyws.shop/api

https://horsedwollfedrwos.shop/api

https://patternapplauderw.shop/api

https://understanndtytonyguw.shop/api

https://considerrycurrentyws.shop/api

https://messtimetabledkolvk.shop/api

https://deprivedrinkyfaiir.shop/api

https://relaxtionflouwerwi.shop/api

Targets

    • Target

      0b7e08a8268a6d413a322ff62d389bf9.exe

    • Size

      1.2MB

    • MD5

      0b7e08a8268a6d413a322ff62d389bf9

    • SHA1

      e04b849cc01779fe256744ad31562aca833a82c1

    • SHA256

      d23a10b3ff0c565ea8ee7f54bcded0582e1e621ebad69d4523d6746f6d8e0e65

    • SHA512

      3d226673e30bbbc27e0a5a6c64bf81eca475c697486b20141df7975bef97901d4865b88f41937f5e3dd00b437f24f91493f80cb69aa366b7a49cd17b26197ba4

    • SSDEEP

      24576:i3KN/uUnwZcPggVmmNp7c/8B2LF8jfjiKriA4BthZ:i3KDwZqggVmmH7F258jfjiKr/4BB

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks