Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

e571d66f7a...4f.exe

windows7-x64

10

e571d66f7a...4f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e571d66f7a22eb958c51273605a67764c9d661511da4451ba46445eeb8bb8a4f.exe

  • Size

    346KB

  • Sample

    240814-h4dhsszarc

  • MD5

    41f5e95ce0426f88f7991d516d65a8f3

  • SHA1

    445d4a3bb1c35b8903599f4872eea3e9dfb17055

  • SHA256

    e571d66f7a22eb958c51273605a67764c9d661511da4451ba46445eeb8bb8a4f

  • SHA512

    bedef1cbe42d2a71c03b02953aa312c16affbcb16fb1148e1a2fcb04668cddcf3cb383f157e06c42334da86dd78fbac5d4c03e0fb9a271ba070f6ceabdf62d04

  • SSDEEP

    6144:1JGSnrAaXcdcGhrtHVTF/f87r71SsG/+flW1RME3fe8/O6qUGzJgydtBEO:14aXQrtHb/4rp9tuRxzgld3EO

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://mennyudosirso.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

https://tenntysjuxmz.shop/api

Targets

    • Target

      e571d66f7a22eb958c51273605a67764c9d661511da4451ba46445eeb8bb8a4f.exe

    • Size

      346KB

    • MD5

      41f5e95ce0426f88f7991d516d65a8f3

    • SHA1

      445d4a3bb1c35b8903599f4872eea3e9dfb17055

    • SHA256

      e571d66f7a22eb958c51273605a67764c9d661511da4451ba46445eeb8bb8a4f

    • SHA512

      bedef1cbe42d2a71c03b02953aa312c16affbcb16fb1148e1a2fcb04668cddcf3cb383f157e06c42334da86dd78fbac5d4c03e0fb9a271ba070f6ceabdf62d04

    • SSDEEP

      6144:1JGSnrAaXcdcGhrtHVTF/f87r71SsG/+flW1RME3fe8/O6qUGzJgydtBEO:14aXQrtHb/4rp9tuRxzgld3EO

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks