Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    HPSupportSolutionsFramework-13.0.1.131.exe

  • Size

    39.4MB

  • Sample

    240825-q3jmesyfrj

  • MD5

    00e72c6ace5e80417ed56b137f4b905b

  • SHA1

    0bc4aa8f3b176dd5c9b971a96775fb78fb7b427b

  • SHA256

    d7ea8974909e6f3d1fe55b5806254150bab4936237f2998ba89f3b1c00fab1f5

  • SHA512

    ee06b597bd058521cfe6d5f4bd8a83901fcfe5a4c5da9f2e56cae0b85f6a55e7bce7c1c604b559e712c78196d0656d857c99239e2f81d5bb54bc3e7f4dcf4e44

  • SSDEEP

    786432:jd4SuKUWnLUcjJDyg3W4TaEhG4fsl6ny34lzK/szLPlwXu4Y:jWaFXWcaEhG4fsEnyIE/2LqXU

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://reagoofydwqioo.shop/api

https://locatedblsoqp.shop/api

https://traineiwnqo.shop/api

https://condedqpwqm.shop/api

https://millyscroqwp.shop/api

https://stagedchheiqwo.shop/api

https://stamppreewntnq.shop/api

https://caffegclasiqwp.shop/api

https://tenntysjuxmz.shop/api

Targets

    • Target

      HPSupportSolutionsFramework-13.0.1.131.exe

    • Size

      39.4MB

    • MD5

      00e72c6ace5e80417ed56b137f4b905b

    • SHA1

      0bc4aa8f3b176dd5c9b971a96775fb78fb7b427b

    • SHA256

      d7ea8974909e6f3d1fe55b5806254150bab4936237f2998ba89f3b1c00fab1f5

    • SHA512

      ee06b597bd058521cfe6d5f4bd8a83901fcfe5a4c5da9f2e56cae0b85f6a55e7bce7c1c604b559e712c78196d0656d857c99239e2f81d5bb54bc3e7f4dcf4e44

    • SSDEEP

      786432:jd4SuKUWnLUcjJDyg3W4TaEhG4fsl6ny34lzK/szLPlwXu4Y:jWaFXWcaEhG4fsEnyIE/2LqXU

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

MITRE ATT&CK Enterprise v15

Tasks