General

  • Target

    software.exe

  • Size

    529KB

  • Sample

    240731-233k3sybjk

  • MD5

    f426fe8305036a31d995e8cedbc911e6

  • SHA1

    8627d74ecf651269e827ed7e1e4bda8e97616ab5

  • SHA256

    f9bd8abd2f47d80b60cb99af0107419192f64b29aff13be98e3761f9bd1150f6

  • SHA512

    0549d4a09c5d977e7893d01de2e7c59a899f241ece291b795602fdabb627d7486b76ffb24ec951f836994be5ca30e4e1c8f0e63142bc9a03c1006b24b03f4234

  • SSDEEP

    12288:BnjxWAtRrdeuQZzPCZb58Kvvn9ii8C7+fVPKGqMr:BnjwAj+O8KO9cGqe

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://aggiledpozm.shop/api

https://shelterryujxo.shop/api

https://chequedxmznp.shop/api

https://illnesmunxkza.shop/api

https://triallyforwhgh.shop/api

https://shootydowtqosm.shop/api

https://faceddullinhs.shop/api

https://egorepetiiiosn.shop/api

https://ammycanedpors.shop/api

Extracted

Family

lumma

C2

https://aggiledpozm.shop/api

Targets

    • Target

      software.exe

    • Size

      529KB

    • MD5

      f426fe8305036a31d995e8cedbc911e6

    • SHA1

      8627d74ecf651269e827ed7e1e4bda8e97616ab5

    • SHA256

      f9bd8abd2f47d80b60cb99af0107419192f64b29aff13be98e3761f9bd1150f6

    • SHA512

      0549d4a09c5d977e7893d01de2e7c59a899f241ece291b795602fdabb627d7486b76ffb24ec951f836994be5ca30e4e1c8f0e63142bc9a03c1006b24b03f4234

    • SSDEEP

      12288:BnjxWAtRrdeuQZzPCZb58Kvvn9ii8C7+fVPKGqMr:BnjwAj+O8KO9cGqe

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks