Overview

overview

10

Static

static

10

2808-4-0x0...ry.exe

windows7-x64

1

2808-4-0x0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2808-4-0x0000000000090000-0x00000000000E9000-memory.dmp

  • Size

    356KB

  • MD5

    e4783af54abca11cab97875d0d31ae22

  • SHA1

    424b760494ccad2f880ef2f037c9adc3d537d3e3

  • SHA256

    627b186cd880664d7b04ac1b8efef76585b918098ec36410c5950ed1ad09206d

  • SHA512

    acb8a29a48797185f43400bf58c042a30b1636cfad68a178e42f1ed3598c21837c3efaa2e65180b0210666df3a16a2915ef2952d5bf0f0da1b4fb351e7250858

  • SSDEEP

    6144:msiDacweFVEjZDB78GIsSlbEVJ6n1Kh0X1X4RSj/6eYy0b3fTBXJeTNC:GDRfe9DBton134R0CtrHeTNC

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://meltedpleasandtws.shop/api

https://liabiliytshareodlkv.shop/api

https://notoriousdcellkw.shop/api

https://conferencefreckewl.shop/api

https://flourhishdiscovrw.shop/api

https://landdumpycolorwskfw.shop/api

https://ohfantasyproclaiwlo.shop/api

https://parallelmercywksoffw.shop/api

https://barebrilliancedkoso.shop/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2808-4-0x0000000000090000-0x00000000000E9000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections