General

  • Target

    Aquantia (Updated).zip

  • Size

    61.8MB

  • Sample

    240703-pkyg7athnd

  • MD5

    88a91639af40744d470080f0f2c56a66

  • SHA1

    4ba7e186019805bcb2443c986dd8b78f4804b815

  • SHA256

    6be4df1922dbf6aff979d1cc7b2d491b83c8f5f98fdaff5a0fe025d3fe131683

  • SHA512

    f1da58b8a62d74cd95efdb11b30ca0b75dc4d34d2f363ad1a87281db954684984dbf38236ebd071fd0896624f428dcfcf71748b56cac56f7ddbde0da58321f38

  • SSDEEP

    1572864:qqZIoO0ijF3Sa+BOUlpPYsCg0Wr8S2fJRQ8GFY6T0SqvMfZsc+:DtOfIBpPZz8FEzV0SMMxP+

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://citizencenturygoodwk.shop/api

https://potterryisiw.shop/api

https://foodypannyjsud.shop/api

https://contintnetksows.shop/api

https://reinforcedirectorywd.shop/api

Targets

    • Target

      Aquantia_Setup 2.1.1.exe

    • Size

      702.4MB

    • MD5

      088021375607e945d33dc460c3c7da47

    • SHA1

      aa551f2b64b8ffc9052b855e8cf8cb7dc395e8c7

    • SHA256

      f4ad0bcc1c3386409f947e68d0827019b9103efdc4f4aa663c18d5e408d407c6

    • SHA512

      ba0ed385b0aa684e0bc04ac54f25be2c7b50c9228a30299912c93b1614debeab76c0494f4755798fd0ea2806fbd9bb08e3828dbdc3b60cc211bec4ea4f4c74c4

    • SSDEEP

      196608:eP80pJPiE6bYfrDMpqCPTWIodPlzmtnQw0HAqGdG:G80pJPiQoWIobmtnQw0b

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Target

      gghth.dll

    • Size

      315.1MB

    • MD5

      35fd325c8813e7147375ee5e07fd560f

    • SHA1

      e74775462e684f0736ff435fbf6ea944e4c5290c

    • SHA256

      49db4f9abf38a40e987543bbf7b8e606ff53b19778ea90eb59ff0b480b322cfb

    • SHA512

      00ec64f60af1bffe48590c2d54abb585707d45ef561a9f6e4e1eefff70d275a1dcb2bdf7e3bdd0c015a17b8bb9de988160224eb964dc10c7c28a83b6f9e2ec21

    • SSDEEP

      196608:xP80pJPiE6bYfrDMpqCPTWIodPlzmtnQw0HAqGdG:h80pJPiQoWIobmtnQw0b

    Score
    1/10

MITRE ATT&CK Matrix

Tasks