General

  • Target

    Adobe_Activator.exe

  • Size

    11.3MB

  • Sample

    240604-mlny2adh83

  • MD5

    31432ef1c55f5fe1a20c7dd894be5e7e

  • SHA1

    238f387160c4b333817fb1e83544362491bd6d16

  • SHA256

    df3a364fb96feac40475962b1c6f9c87445191b9b4123826aa9240439c0f0fd0

  • SHA512

    02362e6267cda7b042ce4d6fcbe09286cb40f401e22d78d2d9353b04f36f3296a8c65ac417fac083f2c8b9bb48bdb34a3f72ac66e0f96b46a096d6e3ed20f22d

  • SSDEEP

    196608:zQAOR5GAycy+CzaayyCV4MCnycqvrCKZ8UFR5:kxRKZxaayyCrey7vrD7FR

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://ticketgradiencomfj.shop/api

Targets

    • Target

      Adobe_Activator.exe

    • Size

      11.3MB

    • MD5

      31432ef1c55f5fe1a20c7dd894be5e7e

    • SHA1

      238f387160c4b333817fb1e83544362491bd6d16

    • SHA256

      df3a364fb96feac40475962b1c6f9c87445191b9b4123826aa9240439c0f0fd0

    • SHA512

      02362e6267cda7b042ce4d6fcbe09286cb40f401e22d78d2d9353b04f36f3296a8c65ac417fac083f2c8b9bb48bdb34a3f72ac66e0f96b46a096d6e3ed20f22d

    • SSDEEP

      196608:zQAOR5GAycy+CzaayyCV4MCnycqvrCKZ8UFR5:kxRKZxaayyCrey7vrD7FR

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks