Overview

overview

10

Static

static

3

88fcd6e837...ff.dll

windows7-x64

3

88fcd6e837...ff.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    88fcd6e8377c0593356493366d6fabff

  • Size

    436KB

  • Sample

    240913-1d79lazelk

  • MD5

    88fcd6e8377c0593356493366d6fabff

  • SHA1

    5377e559b8cbe04bb5f7643de44d600d171deb81

  • SHA256

    35b1ce7822f158992880eea2e2f679a696a028e377042cb9ccaf4a7cf76c924a

  • SHA512

    d1c71cb9398d6bd336d22425d2fbe0787d4004d61718d58fbc03aaf8bd5ec489e65724b87e42a9b8e85736a86257d0c3ef6145a4effaa561945227f4a4b91e0b

  • SSDEEP

    6144:q+OV4QmU1EtTq5640k7SjsilganHeqlb5IzYpD5r:EV4rJq50k7SAihHecbpph

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://piedsiggnycliquieaw.shop/api

https://potterryisiw.shop/api

https://foodypannyjsud.shop/api

https://contintnetksows.shop/api

https://swellfrrgwwos.xyz/api

https://penetratedpoopp.xyz/api

https://ellaboratepwsz.xyz/api

https://towerxxuytwi.xyz/api

https://pedestriankodwu.xyz/api

Extracted

Family

lumma

C2

https://piedsiggnycliquieaw.shop/api

Targets

    • Target

      88fcd6e8377c0593356493366d6fabff

    • Size

      436KB

    • MD5

      88fcd6e8377c0593356493366d6fabff

    • SHA1

      5377e559b8cbe04bb5f7643de44d600d171deb81

    • SHA256

      35b1ce7822f158992880eea2e2f679a696a028e377042cb9ccaf4a7cf76c924a

    • SHA512

      d1c71cb9398d6bd336d22425d2fbe0787d4004d61718d58fbc03aaf8bd5ec489e65724b87e42a9b8e85736a86257d0c3ef6145a4effaa561945227f4a4b91e0b

    • SSDEEP

      6144:q+OV4QmU1EtTq5640k7SjsilganHeqlb5IzYpD5r:EV4rJq50k7SAihHecbpph

    Score
    10/10
    discoverylummastealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks