Overview

overview

10

Static

static

3

1f1b77b3ae...6e.exe

windows7-x64

1

1f1b77b3ae...6e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    119ab658250830f8c7446b551cf8d03e.bin

  • Size

    6.3MB

  • Sample

    240822-bdjtkatflp

  • MD5

    8daad7320047a45d1d2820fc5dafa1d6

  • SHA1

    b21cb7c93099b92d788c2d59898fc7037998e125

  • SHA256

    4168e27321876bb09de157a02c26f71d71361a4cc2bd14f01cf73a308cc94fdf

  • SHA512

    3062028650678db459c7c2fd8b3e70b294ead829b21d93a2c6f61e87c7657315636bd1420e032d05b330ab6daec2aae8433e2fe926bad5bc31d629e7c769fdc5

  • SSDEEP

    196608:3KDxiUl1anzjGh8jcDxVPGYBiCDj2hDs03pA2Vw:r6AnzjGXDxVPGsF/0oaNVw

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://circullateiosn.shop/api

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

https://tenntysjuxmz.shop/api

Targets

    • Target

      1f1b77b3ae97a0f99106203ecdeaaf2e07908e0b6c5b5e2daffb47660cbb1e6e.exe

    • Size

      18.2MB

    • MD5

      119ab658250830f8c7446b551cf8d03e

    • SHA1

      4bdfdd26083921debc4407c1885f0911eed9e263

    • SHA256

      1f1b77b3ae97a0f99106203ecdeaaf2e07908e0b6c5b5e2daffb47660cbb1e6e

    • SHA512

      ffededa38002661cbd43c8d51aa4291403561878563fc20b34068d47bc77c92092c1a295bb3234890102c3d019de407a688584e297c88d49f22ab7b88ecb877c

    • SSDEEP

      98304:uihrrzT8A/eS9Rxq2AdEzyCopv7PWANS0y28uEt6YOUirpt1oZD3OUBD:u83/eeRxVAdE8Zx9y24QWilArOa

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks