General

  • Target

    1de59f0f8997bb47ca30f202229e4a99.exe

  • Size

    3.4MB

  • Sample

    240801-hgxyxs1fpc

  • MD5

    1de59f0f8997bb47ca30f202229e4a99

  • SHA1

    fe92180f31dc0cf3d3e8a5786b49be179e9734d2

  • SHA256

    cbe5e7a4367c32c133a449d2b041babbe37542f5bc800ea7b62e7fb70faed188

  • SHA512

    05a52bd3d3062aa7fef9ac88dbd1dd1f2ff8297891ecfa64d50ca2e87b2837e73cd02df5933a6dce0e04d05a6f57ca4e8a0dfc3d10c8d676ea6b71a8277b2ad0

  • SSDEEP

    98304:2SGAl24rtMfSY/RMMlx6dyNEwNAyI+hvi0s:2STl24JMfSYplxFNExDHn

Score
10/10

Malware Config

Extracted

Family

lumma

Extracted

Family

lumma

C2

https://beatablydoxzcop.shop/api

https://unseaffarignsk.shop/api

https://shepherdlyopzc.shop/api

https://upknittsoappz.shop/api

https://liernessfornicsa.shop/api

https://outpointsozp.shop/api

https://callosallsaospz.shop/api

https://lariatedzugspd.shop/api

https://indexterityszcoxp.shop/api

Targets

    • Target

      1de59f0f8997bb47ca30f202229e4a99.exe

    • Size

      3.4MB

    • MD5

      1de59f0f8997bb47ca30f202229e4a99

    • SHA1

      fe92180f31dc0cf3d3e8a5786b49be179e9734d2

    • SHA256

      cbe5e7a4367c32c133a449d2b041babbe37542f5bc800ea7b62e7fb70faed188

    • SHA512

      05a52bd3d3062aa7fef9ac88dbd1dd1f2ff8297891ecfa64d50ca2e87b2837e73cd02df5933a6dce0e04d05a6f57ca4e8a0dfc3d10c8d676ea6b71a8277b2ad0

    • SSDEEP

      98304:2SGAl24rtMfSY/RMMlx6dyNEwNAyI+hvi0s:2STl24JMfSYplxFNExDHn

    Score
    3/10
    • Target

      Snort_2_9_20_Installer.x64.exe

    • Size

      3.3MB

    • MD5

      b894d0d3c3b796dda1426c1b34437734

    • SHA1

      1c29d081ce05db22bf02e8ed1f1a10b67fcadc45

    • SHA256

      3bd3683ece90654af9562da3242cc20811ec19dd30e390846c1d2b9096893903

    • SHA512

      3fd520eb4b502346d1d1c298658c67f92088fed1460f92a9e828d16547eefc631b6f12d13292bad91c88c6c74fbe8d49b944106fd430541adbc6325475e8df6a

    • SSDEEP

      98304:hkAhAGLtyZcAhVMqXr8vEBoAVCMIAxvsgA:2AhAGxyZcAzXrhBoDttP

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

MITRE ATT&CK Enterprise v15

Tasks