General

  • Target

    93574a5182b95e8b65c9061978f785084c012cbb59e97f8825ff0e9e26ed86da

  • Size

    19.6MB

  • Sample

    240711-2j4c9szcpg

  • MD5

    597cb37cdc02d84c07854144206b5d23

  • SHA1

    291174a0c6c3d5380963d2339bfcb9caec00a697

  • SHA256

    93574a5182b95e8b65c9061978f785084c012cbb59e97f8825ff0e9e26ed86da

  • SHA512

    f7fcd524c894a0b599a46af9fad186fec68b8c1cf82703383a3f3074904f4959bde8c404e67c76f95e3f7b85aea8a68e93b123b0eba105b2e4f71a9e97d0cda8

  • SSDEEP

    98304:QeYbuySpWLIDXwrs41mbpJp8CIKDsuevMnWRaS9ahiEJmGRKNHnJFBfN:2/+Us412anKlaaS9a1JkB

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://begghurldids.shop/api

https://bouncedgowp.shop/api

https://bannngwko.shop/api

https://bargainnykwo.shop/api

https://affecthorsedpo.shop/api

https://radiationnopp.shop/api

https://answerrsdo.shop/api

https://publicitttyps.shop/api

https://benchillppwo.shop/api

https://reinforcedirectorywd.shop/api

Targets

    • Target

      93574a5182b95e8b65c9061978f785084c012cbb59e97f8825ff0e9e26ed86da

    • Size

      19.6MB

    • MD5

      597cb37cdc02d84c07854144206b5d23

    • SHA1

      291174a0c6c3d5380963d2339bfcb9caec00a697

    • SHA256

      93574a5182b95e8b65c9061978f785084c012cbb59e97f8825ff0e9e26ed86da

    • SHA512

      f7fcd524c894a0b599a46af9fad186fec68b8c1cf82703383a3f3074904f4959bde8c404e67c76f95e3f7b85aea8a68e93b123b0eba105b2e4f71a9e97d0cda8

    • SSDEEP

      98304:QeYbuySpWLIDXwrs41mbpJp8CIKDsuevMnWRaS9ahiEJmGRKNHnJFBfN:2/+Us412anKlaaS9a1JkB

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks