General

  • Target

    46a15663329b416cf0907ee47465d786a7b57306713e2075375ec0547d644505

  • Size

    420KB

  • Sample

    240801-jkhtvazbmm

  • MD5

    9a5c9d7dcebb3a819efca2c792954f91

  • SHA1

    248006dc4dda3c5cc8bf2ee757678674b3ba5bf3

  • SHA256

    46a15663329b416cf0907ee47465d786a7b57306713e2075375ec0547d644505

  • SHA512

    d1fe5b1d5464d71fdbce822b649a83dcd549fa6658480ffb546d91315098cb918f9a51ed07d1cf59edc69d0ce280f48efd0d001edb1998eaba2e7a71b7ac06fa

  • SSDEEP

    6144:GYneQ2sJ8JpJn75zYLo1FEViYXMzycp92KqfOM8RLmbHi7xbUmNjTUtD5EZz:GYnBJaJnKYvYXgy3KqfOM0LNVix5U

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://warrantelespsz.shop/api

https://unseaffarignsk.shop/api

https://shepherdlyopzc.shop/api

https://upknittsoappz.shop/api

https://liernessfornicsa.shop/api

https://outpointsozp.shop/api

https://callosallsaospz.shop/api

https://lariatedzugspd.shop/api

https://indexterityszcoxp.shop/api

Extracted

Family

lumma

C2

https://warrantelespsz.shop/api

https://unseaffarignsk.shop/api

https://shepherdlyopzc.shop/api

https://upknittsoappz.shop/api

https://liernessfornicsa.shop/api

https://outpointsozp.shop/api

https://callosallsaospz.shop/api

https://lariatedzugspd.shop/api

https://indexterityszcoxp.shop/api

Targets

    • Target

      3f8474094ad304876d62f66b04b511b6c133c442f9d13f2bea483f4fa8392d6e.exe

    • Size

      523KB

    • MD5

      187d34b60413afcc27dd3dc6e965b829

    • SHA1

      ff6932240510d9e320486877c5ee634312ca7d12

    • SHA256

      3f8474094ad304876d62f66b04b511b6c133c442f9d13f2bea483f4fa8392d6e

    • SHA512

      bd1736f4a19b35867ca8b1f8eb91b030558d2f2649c4e60d954823ebd2459747d30175d2b48da9dbc44e9dd9b74a1207199055f3d984c3d5a796489b6703d1e8

    • SSDEEP

      6144:czLBR64aODdkQrBcn7zTzbcda5ym3a6FiQt6T6w45y2gISKEoLIy7oBG7Cec+CsY:m6DOD5Bc4mL9YwJgrosyl4+jIiekq7n

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks