Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3f2e281bc1e4ff8f98cf343e13eb71fc5cf6ed7fe5241980ac00d90439f13c84

  • Size

    6.4MB

  • Sample

    240613-2pn6jatdmg

  • MD5

    57a6a83482ce2897e8cdec17accbd662

  • SHA1

    4416d6ec1f6a25245a4fc5e0352f3deb11e0b789

  • SHA256

    3f2e281bc1e4ff8f98cf343e13eb71fc5cf6ed7fe5241980ac00d90439f13c84

  • SHA512

    4960d3ec893153bd5138e64dfa8dd1f205dccb4104c839024b87b2e18b256532830280826ce61b6063929fa8b72abcc5fa95c582596abf6874d6ccbea1b509ab

  • SSDEEP

    196608:6qwfqwOzG9HNMiKXSuXOBGdg7L+0gO18pio:hEtsiuXOL1dJo

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://greentastellesqwm.shop/api

https://distincttangyflippan.shop/api

https://macabrecondfucews.shop/api

https://stickyyummyskiwffe.shop/api

https://sturdyregularrmsnhw.shop/api

https://lamentablegapingkwaq.shop/api

https://innerverdanytiresw.shop/api

https://standingcomperewhitwo.shop/api

Targets

    • Target

      3f2e281bc1e4ff8f98cf343e13eb71fc5cf6ed7fe5241980ac00d90439f13c84

    • Size

      6.4MB

    • MD5

      57a6a83482ce2897e8cdec17accbd662

    • SHA1

      4416d6ec1f6a25245a4fc5e0352f3deb11e0b789

    • SHA256

      3f2e281bc1e4ff8f98cf343e13eb71fc5cf6ed7fe5241980ac00d90439f13c84

    • SHA512

      4960d3ec893153bd5138e64dfa8dd1f205dccb4104c839024b87b2e18b256532830280826ce61b6063929fa8b72abcc5fa95c582596abf6874d6ccbea1b509ab

    • SSDEEP

      196608:6qwfqwOzG9HNMiKXSuXOBGdg7L+0gO18pio:hEtsiuXOL1dJo

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks