General

  • Target

    c799e5e10709df5ac5a1f7fa57757d819169eb989da0a17837852826366f0618.exe

  • Size

    14.2MB

  • Sample

    240710-w829lswbrd

  • MD5

    c02acc9d1f6b722db01cdebda7261f3a

  • SHA1

    9dfc99b14991c753ed46daa47ebb8ab6a72b41c3

  • SHA256

    c799e5e10709df5ac5a1f7fa57757d819169eb989da0a17837852826366f0618

  • SHA512

    b35d7d692cdb46cc11a95479aafce9986647f0c252a3c203b93dba9d095f18844f2c0803cd965082397453d22ef9c4671755182d5a7ddc31a3b6d928b88b888b

  • SSDEEP

    98304:MvJ6ElnqpxqUpOCLuMl9JrI6VKn+cIzNzCuCEAdLN3qgo:UkDFCMl9qQzZCAA+5

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://bargainnykwo.shop/api

https://bouncedgowp.shop/api

https://bannngwko.shop/api

https://affecthorsedpo.shop/api

https://radiationnopp.shop/api

https://answerrsdo.shop/api

https://publicitttyps.shop/api

https://benchillppwo.shop/api

https://reinforcedirectorywd.shop/api

Targets

    • Target

      c799e5e10709df5ac5a1f7fa57757d819169eb989da0a17837852826366f0618.exe

    • Size

      14.2MB

    • MD5

      c02acc9d1f6b722db01cdebda7261f3a

    • SHA1

      9dfc99b14991c753ed46daa47ebb8ab6a72b41c3

    • SHA256

      c799e5e10709df5ac5a1f7fa57757d819169eb989da0a17837852826366f0618

    • SHA512

      b35d7d692cdb46cc11a95479aafce9986647f0c252a3c203b93dba9d095f18844f2c0803cd965082397453d22ef9c4671755182d5a7ddc31a3b6d928b88b888b

    • SSDEEP

      98304:MvJ6ElnqpxqUpOCLuMl9JrI6VKn+cIzNzCuCEAdLN3qgo:UkDFCMl9qQzZCAA+5

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks