General

  • Target

    LummaC2.exe

  • Size

    12.0MB

  • Sample

    240711-v4vtasxajp

  • MD5

    e83b7cc6fa97d3a86b594828b53e0c45

  • SHA1

    f89c3fde435e28ea460930d9ff08e8c4294a35ef

  • SHA256

    8e14b9e458df810a1dfbd07ffed84bbde2c493958d3deddf75324cce0ef1ef5d

  • SHA512

    b757be056a0251ca4992e99bb72ab0dd7c6eada46a3cce223571884593996d1b255e010f1e7c2b49113e1dbbb4d33755f47f65cf25979a77eef5c40311317759

  • SSDEEP

    98304:z6PDm1yvwE+7fkUAWuNsVgQjitJGH0CUEv7ZYVnK0vBjt8gwQcJfgAYtHOwVCpw2:UfQgtypv7aVnXLwObCpeKIXHIP4eCR/M

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://answerrsdo.shop/api

https://bouncedgowp.shop/api

https://bannngwko.shop/api

https://bargainnykwo.shop/api

https://affecthorsedpo.shop/api

https://radiationnopp.shop/api

https://publicitttyps.shop/api

https://benchillppwo.shop/api

https://reinforcedirectorywd.shop/api

Targets

    • Target

      LummaC2.exe

    • Size

      12.0MB

    • MD5

      e83b7cc6fa97d3a86b594828b53e0c45

    • SHA1

      f89c3fde435e28ea460930d9ff08e8c4294a35ef

    • SHA256

      8e14b9e458df810a1dfbd07ffed84bbde2c493958d3deddf75324cce0ef1ef5d

    • SHA512

      b757be056a0251ca4992e99bb72ab0dd7c6eada46a3cce223571884593996d1b255e010f1e7c2b49113e1dbbb4d33755f47f65cf25979a77eef5c40311317759

    • SSDEEP

      98304:z6PDm1yvwE+7fkUAWuNsVgQjitJGH0CUEv7ZYVnK0vBjt8gwQcJfgAYtHOwVCpw2:UfQgtypv7aVnXLwObCpeKIXHIP4eCR/M

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks