Overview

overview

10

Static

static

10

1488-5-0x0...ry.exe

windows7-x64

1

1488-5-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1488-5-0x0000000001290000-0x00000000012E7000-memory.dmp

  • Size

    348KB

  • MD5

    f1f5c91e4b8b501faad6a9823ef4473f

  • SHA1

    5148876c321c637f9b1a5186d741b574a78842e0

  • SHA256

    5f21be538676fd2dec224e6fc5455240f2e57cd29e6047505c388a2b780bdc94

  • SHA512

    086a2252efa8267aca7c3a23a8bc731fb48d189bcaf06ebd76547ee7a74976ab9ca8096fb0153bca292af109e595c468ccdff9b5bcc47f07a39fb33ce1145d11

  • SSDEEP

    6144:mS9zI5ol2V6IQYLtNiPwVEM1mYDvmZZ7eqUOpzNvuDaaan9I:mS9zI5olInrmy3vTqUOp9uDaaan

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://conformfucdioz.shop/api

https://applyzxcksdia.shop/api

https://replacedoxcjzp.shop/api

https://declaredczxi.shop/api

https://catchddkxozvp.shop/api

https://arriveoxpzxo.shop/api

https://contemplateodszsv.shop/api

https://bindceasdiwozx.shop/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1488-5-0x0000000001290000-0x00000000012E7000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections