General

  • Target

    Jetcheats.exe

  • Size

    22.6MB

  • Sample

    240731-236mqstale

  • MD5

    0241dc87a1444613d92d6897d672fd2c

  • SHA1

    27d63e250a9db546bda5c8b21c54128288b2505f

  • SHA256

    d9361e4c825597ebc0aa49729e4a6344d4c4b2006d29842fce2ba629cc8a7d41

  • SHA512

    019ef4b7cc796e72e01ea3206201bd95f2bc0d81ca19ab3b45ea0fbf948b8c2307deb465b1ebf0ff0b8290ae038ac690c2fe2f998081baaebbd8baf5824467e5

  • SSDEEP

    196608:wTxrZOkzGl7Fe9drO2MqGiHkkBU9RGAp4mDt:wVrZOEGlBe9dtq5kBU9RL4m

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://disappearsodsz.shop/api

https://shelterryujxo.shop/api

https://chequedxmznp.shop/api

https://illnesmunxkza.shop/api

https://triallyforwhgh.shop/api

https://shootydowtqosm.shop/api

https://faceddullinhs.shop/api

https://egorepetiiiosn.shop/api

https://ammycanedpors.shop/api

Extracted

Family

lumma

C2

https://disappearsodsz.shop/api

Targets

    • Target

      Jetcheats.exe

    • Size

      22.6MB

    • MD5

      0241dc87a1444613d92d6897d672fd2c

    • SHA1

      27d63e250a9db546bda5c8b21c54128288b2505f

    • SHA256

      d9361e4c825597ebc0aa49729e4a6344d4c4b2006d29842fce2ba629cc8a7d41

    • SHA512

      019ef4b7cc796e72e01ea3206201bd95f2bc0d81ca19ab3b45ea0fbf948b8c2307deb465b1ebf0ff0b8290ae038ac690c2fe2f998081baaebbd8baf5824467e5

    • SSDEEP

      196608:wTxrZOkzGl7Fe9drO2MqGiHkkBU9RGAp4mDt:wVrZOEGlBe9dtq5kBU9RL4m

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks