Overview

overview

10

Static

static

1

Installer.v.29.3.exe

windows7-x64

10

Installer.v.29.3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SoftWare_v1.7.zip

  • Size

    18.1MB

  • Sample

    240808-1q6xaszgrr

  • MD5

    0d33ad44c8fbf865aa3d40f2e9f88117

  • SHA1

    1c7614f720ef7f68f5bacb2abe9e8f7acbd48eee

  • SHA256

    78ef04f856355511b6211d4e94fdaded0daba108d70c489a497cc7753843e84a

  • SHA512

    10f1c7e00d5dd55c0620c78e9d8f5f0c279a8e3105af4ba0fdc3e46849f433be4bf89f6411f9b0b43ee5a0cb82e1e4c3d1b7ff600f126f17bc5509ede8953e5e

  • SSDEEP

    393216:pUGxeeClEQNW2j0OqPBp5tO4HKq0LwmXjgPX0nM3m:pUGxe9u2j0OYBpPq5LTMeM3m

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://pieddfreedinsu.shop/api

https://celebratioopz.shop/api

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://mennyudosirso.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

https://tenntysjuxmz.shop/api

Targets

    • Target

      Installer.v.29.3.exe

    • Size

      391KB

    • MD5

      4c9c06e2c6cd200cc5d10d1145b19347

    • SHA1

      bb531b4c72a11b5fcdbadaba900d23a4f82b25db

    • SHA256

      cdfc1e251aebdc58b18296acf49006c2a3e172eb0844586e0d1d22bdc825643f

    • SHA512

      afbfcc8729b87249c4cc766c2e3a815b0730362a928ac173e55fa56928815a7d0a41654d2e9b76ca3d9e8d90cb0d5e4f102828aa557d323f3f0a8f17ae514616

    • SSDEEP

      6144:T7CxciBm0DKKIzwMeJut1aaw11Xmme7/5+JrXq7O8f5Y3/hGonuodsEO:TWtBtezlne1XmK5Xq625WhQ6sEO

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks