lumma | df3a364fb96feac40475962b1c6f9c87445191b9b4123826aa9240439c0f0fd0 | Triage

Submit
Reports

Overview

overview

Static

static

Adobe_Activator.exe

windows7-x64

3

Adobe_Activator.exe

windows10-2004-x64

Sharing

General

Target

Adobe_Activator.exe
Size

11.3MB
Sample

240604-mlny2adh83
MD5

31432ef1c55f5fe1a20c7dd894be5e7e
SHA1

238f387160c4b333817fb1e83544362491bd6d16
SHA256

df3a364fb96feac40475962b1c6f9c87445191b9b4123826aa9240439c0f0fd0
SHA512

02362e6267cda7b042ce4d6fcbe09286cb40f401e22d78d2d9353b04f36f3296a8c65ac417fac083f2c8b9bb48bdb34a3f72ac66e0f96b46a096d6e3ed20f22d
SSDEEP

196608:zQAOR5GAycy+CzaayyCV4MCnycqvrCKZ8UFR5:kxRKZxaayyCrey7vrD7FR

Score

10^/10

lumma ploutus stealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Adobe_Activator.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Adobe_Activator.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

lumma

C2

https://ticketgradiencomfj.shop/api

Targets

- Target
  
  Adobe_Activator.exe
- Size
  
  11.3MB
- MD5
  
  31432ef1c55f5fe1a20c7dd894be5e7e
- SHA1
  
  238f387160c4b333817fb1e83544362491bd6d16
- SHA256
  
  df3a364fb96feac40475962b1c6f9c87445191b9b4123826aa9240439c0f0fd0
- SHA512
  
  02362e6267cda7b042ce4d6fcbe09286cb40f401e22d78d2d9353b04f36f3296a8c65ac417fac083f2c8b9bb48bdb34a3f72ac66e0f96b46a096d6e3ed20f22d
- SSDEEP
  
  196608:zQAOR5GAycy+CzaayyCV4MCnycqvrCKZ8UFR5:kxRKZxaayyCrey7vrD7FR
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy