Overview

overview

10

Static

static

10

1724-58-0x...ry.exe

windows7-x64

1

1724-58-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    1724-58-0x0000000000400000-0x0000000000455000-memory.dmp

  • Size

    340KB

  • MD5

    22e8365a81c2510caf02894f0981a2de

  • SHA1

    2cb60fe1c383136f15c8ab1b39fc7bf7c79aeb19

  • SHA256

    31005dd9daf33cc068e357882f740f999926cf15c136d3fb0756b84190c46ce1

  • SHA512

    cb2c174267518c23201c33219c3d190cac0c554a6bcfb95c5d1f194b7e58d26ae90a46947a99dc9cf128963079733ae6ff70a4b17023b791eb762a907282d9ab

  • SSDEEP

    6144:LxtgNKdagVVRC2iAQhj+yXkbN5WxyEULG5ABoIYLFiyl:dt/daiPHPyXc5WxeBo2S

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://importancedopz.shop/api

https://unseaffarignsk.shop/api

https://shepherdlyopzc.shop/api

https://upknittsoappz.shop/api

https://liernessfornicsa.shop/api

https://outpointsozp.shop/api

https://callosallsaospz.shop/api

https://lariatedzugspd.shop/api

https://indexterityszcoxp.shop/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1724-58-0x0000000000400000-0x0000000000455000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections