Overview

overview

10

Static

static

10

1056-1-0x0...ry.exe

windows7-x64

1

1056-1-0x0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1056-1-0x0000000000400000-0x0000000000456000-memory.dmp

  • Size

    344KB

  • MD5

    157e1d59be25fc8a409b087b7d225677

  • SHA1

    25ad4084d74e63266767f01898d19e29f9713924

  • SHA256

    4c2a19da0dac35a8e3bd4bdac8a576779270e4a55ecbc04e2c3ab12598180d81

  • SHA512

    e0230ad31cf98f94eafb9f29cf54626024437f8d9d8698e2312d1693d6bff2eabb5103795726f8791e3842c25487ffe70021cd8a77a965e77b1804fb3620a456

  • SSDEEP

    3072:HD7A9dkUaVH9y5WroZqOmoevrM9F56OxRNpFWE5ExRpuMdECjnNd0rCh8qG1CV18:vA9baCWrHFOxBBEwoJjNuuG1CT

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://coalitionformutalew.xyz/api

https://singerreasonnbasldd.xyz/api

https://surprisedscaledowp.xyz/api

https://clerkpolicemandwusi.xyz/api

https://matterrydamagedowkds.xyz/api

https://fiondationkvowos.xyz/api

https://voyagedprivillywk.xyz/api

https://spitechallengddwlsv.xyz/api

https://varitycookypowerw.xyz/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1056-1-0x0000000000400000-0x0000000000456000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections