General

  • Target

    Main.exe

  • Size

    495KB

  • Sample

    240801-lbqjfatckm

  • MD5

    33db94a1e81855a15644170540e38f41

  • SHA1

    0743d04bbf009e69693047e7c9edf187372b6077

  • SHA256

    a78f7274007ab67404f4b1294bd72bd058bedc1c4782568a6483400e0edf51c9

  • SHA512

    7778ecb31ab891c4efee43073457531dbc3d4911551f00562629168211fb73978bd48cc0c4150e0f0a13aeb4504d8908541a9d02646662c32014b91fe79ed87f

  • SSDEEP

    12288:rBgOTkNDtvg6+moyla9FemXah9uh/MkwcAV8Oq0XBFrV5hS:rxTklzoyw9F7XawMnc08/SVX

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://demandlinzei.shop/api

https://applyzxcksdia.shop/api

https://replacedoxcjzp.shop/api

https://declaredczxi.shop/api

https://catchddkxozvp.shop/api

https://arriveoxpzxo.shop/api

https://contemplateodszsv.shop/api

https://bindceasdiwozx.shop/api

https://conformfucdioz.shop/api

Extracted

Family

lumma

C2

https://demandlinzei.shop/api

https://applyzxcksdia.shop/api

Targets

    • Target

      Main.exe

    • Size

      495KB

    • MD5

      33db94a1e81855a15644170540e38f41

    • SHA1

      0743d04bbf009e69693047e7c9edf187372b6077

    • SHA256

      a78f7274007ab67404f4b1294bd72bd058bedc1c4782568a6483400e0edf51c9

    • SHA512

      7778ecb31ab891c4efee43073457531dbc3d4911551f00562629168211fb73978bd48cc0c4150e0f0a13aeb4504d8908541a9d02646662c32014b91fe79ed87f

    • SSDEEP

      12288:rBgOTkNDtvg6+moyla9FemXah9uh/MkwcAV8Oq0XBFrV5hS:rxTklzoyw9F7XawMnc08/SVX

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks