Overview

overview

10

Static

static

10

2512-0-0x0...ry.exe

windows7-x64

1

2512-0-0x0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2512-0-0x0000000000400000-0x0000000000457000-memory.dmp

  • Size

    348KB

  • MD5

    5dd80f24537705f5aa7a59acf90a2b6d

  • SHA1

    2ee4ebf2c32ad9e936797f79b03fc6579a484c58

  • SHA256

    9a62aa7ad322ab483a19b64815a6d6cbdb85b2bc932cb0e7b9457e3fac24780a

  • SHA512

    82669e1460e31c9edbb59c78ef2181b10197368aa35d16098d2313ec19709228536dc2db6afa28498695779e65f6fe2f7b0b2b20668ae88ef6724064f7ac91e8

  • SSDEEP

    6144:NOaKyTFFPUdRWMFx1q2rVFaDcG1QyB+Pc:NnLUdj1pQT1TB+P

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://sulphurhsum.shop/api

https://empiredzmwnx.shop/api

https://boattyownerwrv.shop/api

https://rainbowmynsjn.shop/api

https://definitonizmnx.shop/api

https://creepydxzoxmj.shop/api

https://budgetttysnzm.shop/api

https://chippyfroggsyhz.shop/api

https://assumedtribsosp.shop/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2512-0-0x0000000000400000-0x0000000000457000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections