Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    def7574a3b3fc98294e5be9b881cd137d14e44f5b6add55374cdef0bbd7cb3dc.exe

  • Size

    287KB

  • Sample

    240819-cmhhjasbpk

  • MD5

    865072e23e8869c25bc724a7b075211f

  • SHA1

    c6d418ff9e989a39f69add06532d26594e76533f

  • SHA256

    def7574a3b3fc98294e5be9b881cd137d14e44f5b6add55374cdef0bbd7cb3dc

  • SHA512

    b8a68ffd04db7501a7c5cdbb4facdcb1d37b4d72bbe3ca76f3d1d0b2a6fb2ec78a1303a8ad170b1fbedda062bfe06453afe025cf17f063a6102f7b02a43d5ea0

  • SSDEEP

    6144:LGZDqQoOlvUWdggCXYYMTzsV1u4eq6aEOcB1NdETEO:3OlMDWzsG4eqEOcrETEO

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://cagedwifedsozm.shop/api

https://potentioallykeos.shop/api

https://interactiedovspm.shop/api

https://charecteristicdxp.shop/api

https://deicedosmzj.shop/api

https://southedhiscuso.shop/api

https://consciousourwi.shop/api

https://tenntysjuxmz.shop/api

Targets

    • Target

      def7574a3b3fc98294e5be9b881cd137d14e44f5b6add55374cdef0bbd7cb3dc.exe

    • Size

      287KB

    • MD5

      865072e23e8869c25bc724a7b075211f

    • SHA1

      c6d418ff9e989a39f69add06532d26594e76533f

    • SHA256

      def7574a3b3fc98294e5be9b881cd137d14e44f5b6add55374cdef0bbd7cb3dc

    • SHA512

      b8a68ffd04db7501a7c5cdbb4facdcb1d37b4d72bbe3ca76f3d1d0b2a6fb2ec78a1303a8ad170b1fbedda062bfe06453afe025cf17f063a6102f7b02a43d5ea0

    • SSDEEP

      6144:LGZDqQoOlvUWdggCXYYMTzsV1u4eq6aEOcB1NdETEO:3OlMDWzsG4eqEOcrETEO

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks