General

  • Target

    64ae8807b8359c84c00444c2cbab6236.exe

  • Size

    518KB

  • Sample

    240712-f2kg8azerp

  • MD5

    64ae8807b8359c84c00444c2cbab6236

  • SHA1

    db15781e8050dd032b0bd67315283089aef9dd3d

  • SHA256

    1850a11acaede15b70cf7fc93830cd13ed4855f5e6226ef8110427fab9651ddf

  • SHA512

    6e598e9d74d1df6097e0594f0b2f6d06ee07eda98ba91eb9f12500c50bf6d5edc2b4d35165b67b31b627ca10504aee8d7cb1755d7d8b227229c93ee444e2787f

  • SSDEEP

    6144:K/YU8Hd8WCoWM5qcOotxvqzdCODY1eIQfHc5/mcYpTH5vQATH+2+dU739nNjp2M7:7HvComlwToHcfoTZ9Te2Lnb2MDaMScEO

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://contemplateodszsv.shop/api

https://applyzxcksdia.shop/api

https://replacedoxcjzp.shop/api

https://declaredczxi.shop/api

https://catchddkxozvp.shop/api

https://arriveoxpzxo.shop/api

https://bindceasdiwozx.shop/api

https://conformfucdioz.shop/api

https://reinforcedirectorywd.shop/api

Targets

    • Target

      64ae8807b8359c84c00444c2cbab6236.exe

    • Size

      518KB

    • MD5

      64ae8807b8359c84c00444c2cbab6236

    • SHA1

      db15781e8050dd032b0bd67315283089aef9dd3d

    • SHA256

      1850a11acaede15b70cf7fc93830cd13ed4855f5e6226ef8110427fab9651ddf

    • SHA512

      6e598e9d74d1df6097e0594f0b2f6d06ee07eda98ba91eb9f12500c50bf6d5edc2b4d35165b67b31b627ca10504aee8d7cb1755d7d8b227229c93ee444e2787f

    • SSDEEP

      6144:K/YU8Hd8WCoWM5qcOotxvqzdCODY1eIQfHc5/mcYpTH5vQATH+2+dU739nNjp2M7:7HvComlwToHcfoTZ9Te2Lnb2MDaMScEO

    Score
    10/10
    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks