Overview

overview

10

Static

static

3

Apocalуps...se.exe

windows7-x64

1

Apocalуps...se.exe

windows10-2004-x64

10

Apocalуps...ig.dll

windows7-x64

3

Apocalуps...ig.dll

windows10-2004-x64

3

Apocalуps...ct.dll

windows7-x64

1

Apocalуps...ct.dll

windows10-2004-x64

1

Apocalуps...in.dll

windows7-x64

3

Apocalуps...in.dll

windows10-2004-x64

3

Apocalуps...nu.dll

windows7-x64

1

Apocalуps...nu.dll

windows10-2004-x64

1

Apocalуps...up.dll

windows7-x64

3

Apocalуps...up.dll

windows10-2004-x64

3

Apocalуps...wh.dll

windows7-x64

1

Apocalуps...wh.dll

windows10-2004-x64

1

Apocalуpsе/Core.dll

windows7-x64

1

Apocalуpsе/Core.dll

windows10-2004-x64

1

Apocalуpsе/Data.dll

windows7-x64

1

Apocalуpsе/Data.dll

windows10-2004-x64

1

Apocalуps...ng.dll

windows7-x64

1

Apocalуps...ng.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Apocalуpsе.zip

  • Size

    64.4MB

  • Sample

    240818-thvqqsvclq

  • MD5

    f3910065523c40594515561fb17659c1

  • SHA1

    2fea27973aef55c1c1e1b2161d9276943c807fc7

  • SHA256

    5fdbb285327ae11386ea998953abd894ef9c5e5ba9ca46ba375478768ed54d07

  • SHA512

    045219e69980dd96b611c82e6a524d04fab6b01ceff3747969f5b377b935a10635ba55c01e186464b0ba46502f39ec14d9e5aec1d392d7e36530f1e3d5eaa4bc

  • SSDEEP

    393216:SHPp6fICo8749CrOE7MC8+6wSNvAqp3XUCj:6Pp6fIp8748qEZ8+61eaXUI

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://disappearsodsz.shop/api

https://potentioallykeos.shop/api

https://interactiedovspm.shop/api

https://charecteristicdxp.shop/api

https://cagedwifedsozm.shop/api

https://deicedosmzj.shop/api

https://southedhiscuso.shop/api

https://consciousourwi.shop/api

https://tenntysjuxmz.shop/api

Targets

    • Target

      Apocalуpsе/Apocalypse.exe

    • Size

      58.6MB

    • MD5

      cd61aabe34ccd3da0ca94248b1c61b83

    • SHA1

      f629095066fe5b7767fb8319b93dadab8480532d

    • SHA256

      ce08a234a253e58605ccfa28860ee08a213464e6b7467cdf7ed2157195008ed5

    • SHA512

      cee0220bc469dfd4ad5cd9a8a9feaecb66c1b4855f103d58fe3811886bb853bd7866bb7db2fb67ec7a95712030348f3e7bf1fdc5e20bbe1017a11e1568091338

    • SSDEEP

      393216:EHPp6fICo8749CrOE7MC8+6wSNvAqp3XUC:sPp6fIp8748qEZ8+61eaXU

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

    • Target

      Apocalуpsе/Configs/config.dll

    • Size

      740KB

    • MD5

      f643e6ddd7afeed1c03ca69a8e71b66a

    • SHA1

      a2c6655ead23c3c4dea9171c5aff4adfeb15ea47

    • SHA256

      5733dc037491e1fbbd639131ee462afb69a8fe10680e72a240eed268878bdac4

    • SHA512

      ad599fbeac0fdbd86ab6e2395c3d82a589e66bdfbef24870122580da4aaf534d610425da8cc82181b326b0fcb65972957c2e74430f6f950c1bc3cdc0da93671f

    • SSDEEP

      12288:ab+Azqyc+GYIvPc/90guuCPzhDAQuoBmbW65dH580JAy0J7IRdwhS4O04htM1D5:ab5Wyc+GYmc0guuEtMQxmbW0dH580xY/

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      Apocalуpsе/Configs/inject.dll

    • Size

      52KB

    • MD5

      e38470efa1057c341919946ca409f089

    • SHA1

      83ade046b32352b9e5784a79dbb82d511323d5ad

    • SHA256

      c051d5c4879d1b24b8618577c87a77fe3931f0beec876f953950f495c319be26

    • SHA512

      b12010fe31f72ad8d292d4dd33748c7b50dd8305564303d672d720785fedb682bc535f5d3da972c1260e92ef725138fa0b4d525a75011d16d0b207e072321625

    • SSDEEP

      6:KMEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEV:c

    Score
    1/10
    behavioral5behavioral6

    • Target

      Apocalуpsе/Configs/main.dll

    • Size

      740KB

    • MD5

      f643e6ddd7afeed1c03ca69a8e71b66a

    • SHA1

      a2c6655ead23c3c4dea9171c5aff4adfeb15ea47

    • SHA256

      5733dc037491e1fbbd639131ee462afb69a8fe10680e72a240eed268878bdac4

    • SHA512

      ad599fbeac0fdbd86ab6e2395c3d82a589e66bdfbef24870122580da4aaf534d610425da8cc82181b326b0fcb65972957c2e74430f6f950c1bc3cdc0da93671f

    • SSDEEP

      12288:ab+Azqyc+GYIvPc/90guuCPzhDAQuoBmbW65dH580JAy0J7IRdwhS4O04htM1D5:ab5Wyc+GYmc0guuEtMQxmbW0dH580xY/

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      Apocalуpsе/Configs/menu.dll

    • Size

      12KB

    • MD5

      c9c78c96cd57e682cc633df02483bdef

    • SHA1

      5bcaf1dd505842e05e6b7f603c52d180b0e4f9cb

    • SHA256

      8e1254cd6d363eb52633d7591ed8fed6779067370c52784814acf09a5a485ade

    • SHA512

      936156cf8fcd0a2823621a20ac52a9f60672554bed43657c518eb1882b66b7f660d6c6de4b9d58aff3c07334c2a9ba214bad25c2d19c6d0db2e29821c945b148

    • SSDEEP

      3:dLQt:Jo

    Score
    1/10
    behavioral10behavioral9

    • Target

      Apocalуpsе/Configs/up.dll

    • Size

      740KB

    • MD5

      f643e6ddd7afeed1c03ca69a8e71b66a

    • SHA1

      a2c6655ead23c3c4dea9171c5aff4adfeb15ea47

    • SHA256

      5733dc037491e1fbbd639131ee462afb69a8fe10680e72a240eed268878bdac4

    • SHA512

      ad599fbeac0fdbd86ab6e2395c3d82a589e66bdfbef24870122580da4aaf534d610425da8cc82181b326b0fcb65972957c2e74430f6f950c1bc3cdc0da93671f

    • SSDEEP

      12288:ab+Azqyc+GYIvPc/90guuCPzhDAQuoBmbW65dH580JAy0J7IRdwhS4O04htM1D5:ab5Wyc+GYmc0guuEtMQxmbW0dH580xY/

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      Apocalуpsе/Configs/wh.dll

    • Size

      5KB

    • MD5

      486366059a498e9d3387ebd7d3dd5042

    • SHA1

      e55ebf34fc3e7d5cd3d7d9546280a4c5e6a66c6c

    • SHA256

      41b9d92d0c4e2fba1ae94c2807a9442e1bddfceeb0332779ec6c29d54a159a0e

    • SHA512

      e75088143888a5ee8ccb37c56dba374670841b54715da705012a7f5f3fbe21bcb203ec73485de66106f556a8437f3ffb9d0b052d0774cec476206c4e347166ce

    • SSDEEP

      3:5q:U

    Score
    1/10
    behavioral13behavioral14

    • Target

      Apocalуpsе/Core.dll

    • Size

      2.8MB

    • MD5

      3f79f1b8c67a57c6f87487de138ccd3b

    • SHA1

      1ad50e59bc40464ca378e823745a69e1f6ed443b

    • SHA256

      53d32aa885f04f1fe0a3594298b8ae05540c826c5b4ba4720944e2b91d8b7608

    • SHA512

      6b2dbcf2bb2e7d6af0b6314409cf6c943174281318d264ffec79f10648d44eaf48262b50e139d57fdae93a4ea6409f343451feb11969ce4b7e3bd543bdfaac45

    • SSDEEP

      3:KO:P

    Score
    1/10
    behavioral15behavioral16

    • Target

      Apocalуpsе/Data.dll

    • Size

      24KB

    • MD5

      686c625fbfad9db37a93a8ec5324b247

    • SHA1

      7558d93cc345e135afc31122618c034c7cb7248a

    • SHA256

      559ebc6a47f70380a9f8935d506d083e4867ccfad0370858089fdb79ff52cd22

    • SHA512

      6baba5bef9019383ff77fe65627f70103aacb9954f1d68db6aec64a9ae0784b5fe31a9884f716b61fe8dd850739bdfa9f4bac8551226f124a581399e59f26a1b

    • SSDEEP

      384:L/AAaFiTCmM82SuxDJQfWaFWsZTb2HRN7nR3I15DNR9zQ1Bt:DpaFiTCm0DJQFT/inWr9z8Bt

    Score
    1/10
    behavioral17behavioral18

    • Target

      Apocalуpsе/Drawing.dll

    • Size

      40KB

    • MD5

      3914e5d98945a34651a6f4bf003136d8

    • SHA1

      debaa7d57086ebe0c11df6ee520cd78a9109bfa0

    • SHA256

      75cc3513dad447d94e278452a4c23582356cf127f2f290f915655742f4dd4f72

    • SHA512

      0a72e64f022613386802b6110d3b38e0235867cfd657f4a691e7cc841ce9c467539be8d94ffb383637674980c795c2c65fbed301091eed31c6db364869592cc3

    • SSDEEP

      768:Zz0jGGEMWk8TycxOMZz0jGGEMWk8TycxOMn:vlZNTyM3vlZNTyM3n

    Score
    1/10
    behavioral19behavioral20

MITRE ATT&CK Enterprise v15

Tasks