General

  • Target

    C2Panel-main.zip

  • Size

    6.8MB

  • Sample

    240907-tyrzsasgpn

  • MD5

    302b853ff30bedbf3b2e52174fd6f94d

  • SHA1

    798d65b3c4211177fa28ff8aa50fabd7a81c8ee0

  • SHA256

    0862581ea84d217788fc5f90cedb38c9acd7a358a4ff8e6d619fae0feeb8d6e6

  • SHA512

    5b2a75b00e002feed1fd068e7a813e09e48a76616870adf54908a6e5ee3581b0586a0d6bf342f1945297a407b63ed5a268825d6cec79c5ab8e0f474c3007253f

  • SSDEEP

    196608:8KUQjjq2ComN5bpXRCX2Xmb8jYYr3t/WaGbfUognDo:KrDNXRW2XOWvrd/WaGDUoeo

Malware Config

Extracted

Family

lumma

C2

https://extorteauhhwigw.shop/api

https://potterryisiw.shop/api

https://foodypannyjsud.shop/api

https://contintnetksows.shop/api

https://swellfrrgwwos.xyz/api

https://penetratedpoopp.xyz/api

https://ellaboratepwsz.xyz/api

https://towerxxuytwi.xyz/api

https://pedestriankodwu.xyz/api

Extracted

Family

lumma

C2

https://potterryisiw.shop/api

Targets

    • Target

      C2Panel-main/C2Panel.exe

    • Size

      554KB

    • MD5

      613df599866679f7f19d12ff86220db8

    • SHA1

      33a2f464888fd8aedd2c4cd8f79e9e43321d8465

    • SHA256

      65f8e0e219637833386b6cfe27bd2f8446a214f02149628c63dd0329501e17e6

    • SHA512

      4091dc9ce75e7ff9a1131aa200e30ca293a8619a616bce17a4f5fa6e79602848efd422be64be7af8aff3c99f75536d2ea45dbcf1d7afb0a7998a0526bf76ce13

    • SSDEEP

      12288:2Nqf82rBbd4Qlj68ZEpv/7B+WIOzys7AsMC6WReVDTKwWZwfwsBAlny7Jc23OBuB:2s82ZWQx6AKsWL

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    • Target

      C2Panel-main/DrakeUI.Framework.dll

    • Size

      1.6MB

    • MD5

      0562b4c97f643306df491a938ae636da

    • SHA1

      0807c37b711374ed4814a9518c9e264517de89a0

    • SHA256

      70e72477f7fe0018e043ce8fe2228a289459058ee41caecd6f05855898bc5b80

    • SHA512

      c969cd274b6bf65a34f1d129b6531616a3485a1f153088609ad2369d380fdec37c3e88a423495912715a26e353dd5498f7f9e73c895e9f3f18fc7d1e65d2ecaf

    • SSDEEP

      24576:nYyUyUxws47SDJ+wfa3ZsacYwzhmT5LOMobxqFFnM9Pv1w+Fus:nYyUyUueD001YwzhmVSMoNqFF

    Score
    1/10
    • Target

      C2Panel-main/GeoIPCitys.dll

    • Size

      191KB

    • MD5

      c070f2421851420e832e4f5989a775a2

    • SHA1

      d6af3c48ffbe0fa1e0e54860836d3bbf374b8b46

    • SHA256

      d54fd6c5903eea49a75d620d4ba232f8effb1863f5f9c974e4ac0a8fb1904131

    • SHA512

      75c3edeb4c16d8e82eedc5595b9c3fde4cbd4a3e9deae1967ad513474920a48e4e9275fdc76f44032b1be570a4ece1a6393c4680af8989f67bcdec039d06798e

    • SSDEEP

      3072:87IcHKc0TwY4O6BlLiJxTmd9h1+fJ5uJnjpUoh/ht21hYvpMaoySJHPc8E:8dHV0Tn4pox6d9G4k

    Score
    1/10
    • Target

      C2Panel-main/HVMRun64.dll

    • Size

      4.3MB

    • MD5

      21184c4444b13c67546c7acf7f6ad8e3

    • SHA1

      806fb111900a0ec8bee1f658c6828b9e005f1111

    • SHA256

      14f61c269509eb27083883d5e8edcf9ed14f3b62cfbfb69f4f7434d64a7fa924

    • SHA512

      9c55f71051f7c83d8644c7eaf500a5ea887aa75886480fcb607e3540f482afde0cc11396e3c2be936bd6418ce76a752132391c97b2620927a9a694eee99380eb

    • SSDEEP

      98304:1JArZsVn2qEP6Z5AF8qRHNKs9KtEXMURNZpe5:o0tkY5sHh9FMURN

    Score
    1/10
    • Target

      C2Panel-main/HVMRuntm.dll

    • Size

      2.2MB

    • MD5

      559f1a94d4fadbe42745200c5deeb94c

    • SHA1

      606e336a95c22d0a5bd260af68a3321a284a7270

    • SHA256

      52cf690f3436c9e98a2ab13e2871ca95da72c34ea5dd36d5c52ecccfa78b5696

    • SHA512

      49b85d97f32322cac68c811c7f0268b6d0a71f2dc4428281d724aab0355544da4b33aebffe72e5b92d0b024e40c29392bade4eec2f00c98a46a44eb3e1e547fa

    • SSDEEP

      49152:eX8t9RJHZ9rXOjClE3xNP8AHn9yHyS4LdR1eFcDmoFwHqM9iJ4YI:eMttZVOG237PwSS4BfZDmCwKMs1

    Score
    3/10
    • Target

      C2Panel-main/LiveCharts.MAPS.dll

    • Size

      53KB

    • MD5

      dfee15e4c6efa37e6645d8b47c8581e0

    • SHA1

      876140e0855fcd15bfb590431fb7b280d1db4a21

    • SHA256

      5b8a9a04f454a2c4da5989fa454a0138d3e5c40712816600f90111b7bf045c40

    • SHA512

      4d0e7b0a5642b649c04e54d89e707ec00e79a0fa282eac19b6097b819652045c3e157763b5b2922a4c2252b0877059ef90eb60038280dbfbef9502f421d739df

    • SSDEEP

      768:r4gOx89xKERw2U11HI+bZO603JLw8MOrNNLSW5/5xTcb2y1ehVHp:rPKB22HIwwFNuC5N6n+VHp

    Score
    1/10
    • Target

      C2Panel-main/LiveCharts.dll

    • Size

      148KB

    • MD5

      9642899636959b7fc89bf34a8b998a90

    • SHA1

      479a0254d1c9e5565c7d861bb77f54b7eae50c96

    • SHA256

      9fcf89837b60f69c1c501e4cfa4d2860887afd0b8f325803367e795a4e3bc9ca

    • SHA512

      435dccb57ff3e9d0663770768c866838b19fbaa5b8e79de0ca111d9c73276f016e016d1d268f72cf3435ecac122039764fada952e1a4f68f368b492bb866c9a2

    • SSDEEP

      3072:saegvMNVoz3Vlw6/R3z3MV1IdJJGVKWHC2KdxFFT9lzo:VFJlwYMVWY65z

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks