General

  • Target

    229.exe

  • Size

    9.1MB

  • Sample

    240710-mkt4navcqh

  • MD5

    c3a8a0fd943924bfbd176c99df56ed2c

  • SHA1

    8bc8d69cbec44704f062c08a919da992a425c720

  • SHA256

    d1556baf48f206639e69f0e800e3360aa362f267c1c30b724140b6c713648df6

  • SHA512

    71edb53cbf8d52d79615d5db834430870d6764ddcca4d8cf61d5fc4ddf404b259a974eb90944028ff20153561aa8b9fcc3374ae9badc6f6ac6b6d30150444f41

  • SSDEEP

    49152:W6apzy+VptPhfIO7G+mHaw5u+8FyvgA8/F4tY8VclZEAJj8s/HXXjP5bsJTxjc5J:CJRnt9IgnDsvg6i3FvEen/m+ATZ

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://respectabledpcs.shop/api

https://bouncedgowp.shop/api

https://bannngwko.shop/api

https://bargainnykwo.shop/api

https://affecthorsedpo.shop/api

https://radiationnopp.shop/api

https://answerrsdo.shop/api

https://publicitttyps.shop/api

https://benchillppwo.shop/api

https://reinforcedirectorywd.shop/api

Targets

    • Target

      229.exe

    • Size

      9.1MB

    • MD5

      c3a8a0fd943924bfbd176c99df56ed2c

    • SHA1

      8bc8d69cbec44704f062c08a919da992a425c720

    • SHA256

      d1556baf48f206639e69f0e800e3360aa362f267c1c30b724140b6c713648df6

    • SHA512

      71edb53cbf8d52d79615d5db834430870d6764ddcca4d8cf61d5fc4ddf404b259a974eb90944028ff20153561aa8b9fcc3374ae9badc6f6ac6b6d30150444f41

    • SSDEEP

      49152:W6apzy+VptPhfIO7G+mHaw5u+8FyvgA8/F4tY8VclZEAJj8s/HXXjP5bsJTxjc5J:CJRnt9IgnDsvg6i3FvEen/m+ATZ

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks