Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    80f121724a5b54834641f6c5855f04b4.bin

  • Size

    3.3MB

  • Sample

    240904-bvv8xssdjn

  • MD5

    d00006fe4e921fcce961690e1e4e3047

  • SHA1

    26eae78286c353dcfa22250bbf28ada56263320e

  • SHA256

    6b6bb3f16eeb93ca2c5ea4bf5c429e11973430e9313a1dd4e901e8e3e01c82b0

  • SHA512

    71658fb64894cf55ebbe8f8457f888a30d0b37ff26bed7194885f024063ee2233488205e811ed807dec11437f61a5c14e4eb0be9af97279628abbf3077dc8915

  • SSDEEP

    49152:uhEecofJha5sGyKHC/mTptlF/dHeQt31q8GJKKLxZ50MFEbhxuVEN1U5xeR:u2eT7Z/mTpLFrR12JFZdIxuVmR

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://tibedowqmwo.shop/api

https://locatedblsoqp.shop/api

Targets

    • Target

      Setup.exe

    • Size

      2.2MB

    • MD5

      d9530ecee42acccfd3871672a511bc9e

    • SHA1

      89b4d2406f1294bd699ef231a4def5f495f12778

    • SHA256

      81e04f9a131534acc0e9de08718c062d3d74c80c7f168ec7e699cd4b2bd0f280

    • SHA512

      d5f048ea995affdf9893ec4c5ac5eb188b6714f5b6712e0b5a316702033421b145b8ee6a62d303eb4576bf8f57273ff35c5d675807563a31157136f79d8a9980

    • SSDEEP

      49152:rHOut2Bf0ajIM8XEEN6N0rE/I/vqn7krQEQusd5F:VbaMbXbE/I/SnwrQEQusd/

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    • Target

      d3dx9_43.dll

    • Size

      1.9MB

    • MD5

      300a2c9933c2c0f3d363aa22faa33a7a

    • SHA1

      cbceb2b8181113e6a39d34324cda1175de694aba

    • SHA256

      d686835f2d14dc8b7c02ef78b5c537ff8eae62fc2b6eccb8b47adedabb511273

    • SHA512

      ca50891c918ac70d0efe4114aa0b63c36d71128519bb8cd00a51e8c6170e41dd4f6b15219ad76d7c978b977ad7b80043eeb9b5153e2e29146c1ce2bca1e40660

    • SSDEEP

      24576:BatU6OIyl2Wy9M3bJ45fPS0zFZghQ6aOiFaKOE31GrvFXl74YZ29X1MDd6olmrB0:BT66l2u45BiNYFrz31Cv3D29kd6kQ

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks