Overview

overview

10

Static

static

3

SecuriteIn...35.exe

windows7-x64

8

SecuriteIn...35.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Trojan.InjectNET.17.26904.26035.exe

  • Size

    13KB

  • Sample

    240816-zcd4pavhle

  • MD5

    e6772bfbe19efa0507567f8c0c1c449a

  • SHA1

    1e7c97fbaba9756ea01028335c3661ad3cf4bfa5

  • SHA256

    4ce687868f5b640b68510436f7a508c11ed11c4e7311a09efb28220c429d4b9e

  • SHA512

    ce95d68054b4e3e0a386453713a4eda777de4cb7357e132c6eeb7cd3181467a19c31ee793c416321a7cf971566f18ff201bf0a3ec81f340b55683756e6900da5

  • SSDEEP

    192:mlqqChM/KUTOQ4DT7hcGFJy/y/y/yuQ7HsIChl9ozK75MqfDHYCJe:EqqChMSUr4vuG6uLChczK75MqfsW

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

https://tenntysjuxmz.shop/api

Targets

    • Target

      SecuriteInfo.com.Trojan.InjectNET.17.26904.26035.exe

    • Size

      13KB

    • MD5

      e6772bfbe19efa0507567f8c0c1c449a

    • SHA1

      1e7c97fbaba9756ea01028335c3661ad3cf4bfa5

    • SHA256

      4ce687868f5b640b68510436f7a508c11ed11c4e7311a09efb28220c429d4b9e

    • SHA512

      ce95d68054b4e3e0a386453713a4eda777de4cb7357e132c6eeb7cd3181467a19c31ee793c416321a7cf971566f18ff201bf0a3ec81f340b55683756e6900da5

    • SSDEEP

      192:mlqqChM/KUTOQ4DT7hcGFJy/y/y/yuQ7HsIChl9ozK75MqfDHYCJe:EqqChMSUr4vuG6uLChczK75MqfsW

    Score
    10/10
    discoverylummastealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Downloads MZ/PE file

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks