General

  • Target

    54092d2fb30f9258ab9817de3b886997dbefdee2963b4d051b70c0309aea99e6.exe

  • Size

    22.0MB

  • Sample

    240801-llxeqsybqg

  • MD5

    c53bb047b93851b66fead144d7c46ff3

  • SHA1

    42ef9d0a7efe477fabd290d16c30c63f5f576cd1

  • SHA256

    54092d2fb30f9258ab9817de3b886997dbefdee2963b4d051b70c0309aea99e6

  • SHA512

    7060e10d60d0699c7c06012a3e2be44f859ec06ec00bbd51331b5ac5169e88d14baf7949d2cd40bcebe42016f8a7d5a28a11c755a54675f5715dbee34cfc11a6

  • SSDEEP

    98304:8/9by/rwaIUiwqrhpZ28B8ENcFsBEu7eHIHZvEGIjwXApNZciGC5mNX:JrwaIuq9G8BVNcSeJGLqciGqm

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://stimultaionsppzv.shop/api

https://horizonvxjis.shop/api

https://effectivedoxzj.shop/api

https://parntorpkxzlp.shop/api

https://grassytaisol.shop/api

https://broccoltisop.shop/api

https://shellfyyousdjz.shop/api

https://bravedreacisopm.shop/api

Extracted

Family

lumma

C2

https://stimultaionsppzv.shop/api

https://horizonvxjis.shop/api

Targets

    • Target

      54092d2fb30f9258ab9817de3b886997dbefdee2963b4d051b70c0309aea99e6.exe

    • Size

      22.0MB

    • MD5

      c53bb047b93851b66fead144d7c46ff3

    • SHA1

      42ef9d0a7efe477fabd290d16c30c63f5f576cd1

    • SHA256

      54092d2fb30f9258ab9817de3b886997dbefdee2963b4d051b70c0309aea99e6

    • SHA512

      7060e10d60d0699c7c06012a3e2be44f859ec06ec00bbd51331b5ac5169e88d14baf7949d2cd40bcebe42016f8a7d5a28a11c755a54675f5715dbee34cfc11a6

    • SSDEEP

      98304:8/9by/rwaIUiwqrhpZ28B8ENcFsBEu7eHIHZvEGIjwXApNZciGC5mNX:JrwaIuq9G8BVNcSeJGLqciGqm

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks