Resubmissions

04-07-2024 09:09

240704-k4szlatdkk 10

04-07-2024 08:11

240704-j29znatgqc 5

General

  • Target

    9cc0e7d568d15f8f23b06c68ad71be62.exe

  • Size

    8.3MB

  • Sample

    240704-k4szlatdkk

  • MD5

    9cc0e7d568d15f8f23b06c68ad71be62

  • SHA1

    d7b6c018c99448014fe6199244956eafb69405d3

  • SHA256

    a173db1e8568fc4b00f326d52af0fea19c59639c486d9975589edfd8f1a11da1

  • SHA512

    2483ecb55bd3f126e6229d6dd19a6325430fed845a92294851b3915523a2df4f58fc253a9bedb22841c7c21c3ae54721d940b9cd0b652217a7482205d48dea45

  • SSDEEP

    49152:m5N3NXi7s9xkBT9zBalvjBcnSUfTfXVguobKavEeWL7jC5EEfXckQcnt1Ng8Gs8a:ZsrQ9QefrXVgNGkNEEfX2Hc

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://lyingchemicow.shop/api

https://bouncedgowp.shop/api

https://bannngwko.shop/api

https://bargainnykwo.shop/api

https://affecthorsedpo.shop/api

https://radiationnopp.shop/api

https://answerrsdo.shop/api

https://publicitttyps.shop/api

https://benchillppwo.shop/api

Targets

    • Target

      9cc0e7d568d15f8f23b06c68ad71be62.exe

    • Size

      8.3MB

    • MD5

      9cc0e7d568d15f8f23b06c68ad71be62

    • SHA1

      d7b6c018c99448014fe6199244956eafb69405d3

    • SHA256

      a173db1e8568fc4b00f326d52af0fea19c59639c486d9975589edfd8f1a11da1

    • SHA512

      2483ecb55bd3f126e6229d6dd19a6325430fed845a92294851b3915523a2df4f58fc253a9bedb22841c7c21c3ae54721d940b9cd0b652217a7482205d48dea45

    • SSDEEP

      49152:m5N3NXi7s9xkBT9zBalvjBcnSUfTfXVguobKavEeWL7jC5EEfXckQcnt1Ng8Gs8a:ZsrQ9QefrXVgNGkNEEfX2Hc

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks