Overview

overview

10

Static

static

3

maizu hack v1.4.exe

windows7-x64

1

maizu hack v1.4.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1590e127729c402066e543d8055f5e37ac68467d7e2c7a8d9a2bb3d1bfffc309.zip

  • Size

    5.3MB

  • Sample

    240811-bfmy1axenm

  • MD5

    942ad6a5cbc14ddd8363a3820b217624

  • SHA1

    38a82fd6f943adc17a3c2d0b3ef4dcd7448fb9e7

  • SHA256

    1590e127729c402066e543d8055f5e37ac68467d7e2c7a8d9a2bb3d1bfffc309

  • SHA512

    09d80c24b1fe1599e88d0b00027cf38d68636af9f80ab976788979d9e30693486a8c4e38b8202a320ef32975c4ca773c4eafc3dcab848f2fd2a64c506606e181

  • SSDEEP

    98304:QJnOiwTWvgQZmZaowIo6VLQYoIIJfYfDUAwoN1OY5sOJ:I2oZlSVLPvqut1OqR

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://solutionpxmuzo.shop/api

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://mennyudosirso.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

https://tenntysjuxmz.shop/api

Targets

    • Target

      maizu hack v1.4.exe

    • Size

      13.7MB

    • MD5

      3cba2a547d84b23f5e9a7677db41c395

    • SHA1

      8aae633846a2cfc05d56599ddaf74eaf910797d4

    • SHA256

      4a60736009a34997540dd54edf9e9b0ade0ba1380643dab90458f3ce1efbe734

    • SHA512

      65e87fded421d82c3707a9088153d48e3c387930b09c329aa2117651492f6454ffd3cab8b4c42ba447d6d137b54dc95c6c1121f960d3b3bf614062a62b191723

    • SSDEEP

      98304:t9rCUPcXu+sfx5BpD16pH/7FaGzB2Eg3tXOtfRciVbnXM1:t2XuPfx5B36RkG9g3FgRQ

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks