Overview

overview

10

Static

static

3

twitch viewer.exe

windows10-2004-x64

10

Resubmissions

13/07/2024, 19:47

240713-yhndwaxbjd 10

13/07/2024, 19:35

240713-yan1fawglb 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    twitch viewer.rar

  • Size

    421KB

  • Sample

    240713-yhndwaxbjd

  • MD5

    73c54d7dbb731bad8c62f0fe76668066

  • SHA1

    c35e251dfd09fffb7903afe0641ca4ab672ef8b9

  • SHA256

    73cc9ce066b6f0e0df5a41508375140f2ee4ed435e9c7cb48a0eb55b96ccfed2

  • SHA512

    753b03a3076bdf8a73cf78f833734895da4d355e1c6d61a829fac40cbd09fd6428bb1c10c755fae67635315b9fb8f7e5b975ebcb9418deecb8c24623fc179d9a

  • SSDEEP

    12288:pW4xEfkkDlu/jivDqP3KcaWyiHOcWQHU+Vb:1EFlciDW6nDiHy+h

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://demandlinzei.shop/api

https://applyzxcksdia.shop/api

https://replacedoxcjzp.shop/api

https://declaredczxi.shop/api

https://catchddkxozvp.shop/api

https://arriveoxpzxo.shop/api

https://contemplateodszsv.shop/api

https://bindceasdiwozx.shop/api

https://conformfucdioz.shop/api

https://reinforcedirectorywd.shop/api

Targets

    • Target

      twitch viewer.exe

    • Size

      1.4MB

    • MD5

      c0bd5f72eb1d28ef17e5e306a00409d9

    • SHA1

      b8ff0fb09f72757e6a416eb2169dd31541b45abd

    • SHA256

      d2c479c29f97067dc56cd54c71bf5f842bd2d2c3605c13f71d904ef73ddb8a98

    • SHA512

      796547d1f10370bb3ea38df9a7c52dfc646c6562e0f28ceba214353cf37e965185651eb27642210aad73c53c69a676825ff9de3b5db94151c966e1313fcddf67

    • SSDEEP

      12288:E1V1a3praVfajC352/qctO12hdeWs+D8oKVz8OuFFUchDFXLgYV8zSKbpyKOYEAh:E1T4cajDqWOUhdewTGzlinDUcKTik

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks