Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

4ce687868f...9e.exe

windows7-x64

10

4ce687868f...9e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e6772bfbe19efa0507567f8c0c1c449a.bin

  • Size

    6KB

  • Sample

    240818-cbrbasygmd

  • MD5

    15fde5674ba94d4881bdd0f3929aa159

  • SHA1

    cf8e7f6ca530e98c448f5e7b62c064d9babeed83

  • SHA256

    0f452c3eba358be5050a4e5dee8a872995948f13c0b69d33d91cf1c21f9d449b

  • SHA512

    e94fda381d4c0af2c0b6e6831f531dae42c484b6914f493b620cbd290c5d4128e7b3b715ab46cfe0d4f7c77a87770ec8699348a5f817ef6151d3f3c453ee6cce

  • SSDEEP

    96:mzraOwsx8LcFMIEcvPc3j/YBjwa/D6h4YjFJLsuUmVhPDHPE3XBqxI9mZFUnv+QH:aZ8LgMV6akB8egjv7VhPixKNKr08

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

https://tenntysjuxmz.shop/api

Targets

    • Target

      4ce687868f5b640b68510436f7a508c11ed11c4e7311a09efb28220c429d4b9e.exe

    • Size

      13KB

    • MD5

      e6772bfbe19efa0507567f8c0c1c449a

    • SHA1

      1e7c97fbaba9756ea01028335c3661ad3cf4bfa5

    • SHA256

      4ce687868f5b640b68510436f7a508c11ed11c4e7311a09efb28220c429d4b9e

    • SHA512

      ce95d68054b4e3e0a386453713a4eda777de4cb7357e132c6eeb7cd3181467a19c31ee793c416321a7cf971566f18ff201bf0a3ec81f340b55683756e6900da5

    • SSDEEP

      192:mlqqChM/KUTOQ4DT7hcGFJy/y/y/yuQ7HsIChl9ozK75MqfDHYCJe:EqqChMSUr4vuG6uLChczK75MqfsW

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Downloads MZ/PE file

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks