Overview

overview

10

Static

static

1

URLScan

urlscan

https://www.youtube....

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqbkpqOE1SOTBzOFBMZmgwaEdpRXZYR0stcWQxZ3xBQ3Jtc0ttUENzUWM0M3FUYUJaSzZia3RKU3l5YkJBVjk0ZGNhbnRXZ1NGRk44UktQaEduYl9wcW44aVZMckVwdTZEV2hJR09feFR3Z0FkamtVeU5SUFRsWjJQT08taFkzcmhsaEZGejhUMEY5M2VScmVFQ2F5WQ&q=https%3A%2F%2Ffusionhacks.pro%2Fcheat%2Froblox-executor.html&v=alO5NBBX3_0

  • Sample

    240806-hskgzasemr

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://deadpannsjzvn.shop/api

https://chippyfroggsyhz.shop/api

Targets

    • Target

      https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqbkpqOE1SOTBzOFBMZmgwaEdpRXZYR0stcWQxZ3xBQ3Jtc0ttUENzUWM0M3FUYUJaSzZia3RKU3l5YkJBVjk0ZGNhbnRXZ1NGRk44UktQaEduYl9wcW44aVZMckVwdTZEV2hJR09feFR3Z0FkamtVeU5SUFRsWjJQT08taFkzcmhsaEZGejhUMEY5M2VScmVFQ2F5WQ&q=https%3A%2F%2Ffusionhacks.pro%2Fcheat%2Froblox-executor.html&v=alO5NBBX3_0

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks