General

  • Target

    050452d10d8264eeaad6950d076404d125afb2b404761028a5d9ee9d833b4fab

  • Size

    10.6MB

  • Sample

    240801-gx3cxazfqa

  • MD5

    d394b75a58676e2a3bc20d43d9c4326d

  • SHA1

    26173544b9e758a56883183607f8faf96f668ecc

  • SHA256

    050452d10d8264eeaad6950d076404d125afb2b404761028a5d9ee9d833b4fab

  • SHA512

    5c297a0f7d6a070baae83a2ebac89bd75ab7d73d76cc74304b5a40c0752f8847f740dcc9c2494f7e633e1cc5e8433dbee0cda2d25ff76e9ddaa9b0c957983950

  • SSDEEP

    196608:O3g610b/KxnytRUZJrXqzkXckbCNWlX0avDPhR8SpGYpWEOlr9ZE7H8xqVR:OQ4kRUr4s7zVLvDh2QNw9lPI8xqz

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://spackledzpxs.shop/api

https://applyzxcksdia.shop/api

https://replacedoxcjzp.shop/api

https://declaredczxi.shop/api

https://catchddkxozvp.shop/api

https://arriveoxpzxo.shop/api

https://contemplateodszsv.shop/api

https://bindceasdiwozx.shop/api

https://conformfucdioz.shop/api

Extracted

Family

lumma

C2

https://spackledzpxs.shop/api

https://applyzxcksdia.shop/api

Targets

    • Target

      ac705ec9791707f35fddfbd5781b09236a3fb57940175dc1da31420f070c3b04.exe

    • Size

      30.0MB

    • MD5

      d78093e955331c103ce6312545ea8af0

    • SHA1

      8253f478ab041de01ba59050069076d64deb6987

    • SHA256

      ac705ec9791707f35fddfbd5781b09236a3fb57940175dc1da31420f070c3b04

    • SHA512

      55b98c11f5fc9f6200c5ceb8833869e839d31604da35ae7b64f20deec8d66ba933eaa4edfde0ea5febe36c2970f4e814193ba2a4bb8610b9efb37b5b2530d92f

    • SSDEEP

      196608:UVvpshEmEO1iGZBTpcB8GV5rVSAmCivFjSkCWk4CX4h:UWEm7iEpYZsAmCidjfCX4h

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks