Overview

overview

10

Static

static

3

2024091477...ch.exe

windows7-x64

3

2024091477...ch.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024091477d841af8ae0e94f305843f468fd35fapoetratsnatch

  • Size

    20.8MB

  • Sample

    240914-t773csvblb

  • MD5

    77d841af8ae0e94f305843f468fd35fa

  • SHA1

    a9bbe3ed67ef4c49b3a9139300dd6ebac6118738

  • SHA256

    7c5b4be6d1d08fe5bc81f0ac5b3ec77f87f73b5a81eef0dd6f45255b22f08edd

  • SHA512

    a0c65ebe441f20e68bf66420766e22e5ceebd4b9b2a781f04a2347274fdc2a52541ab872d600ca23a41947907e120b3dc168bd0caa72a8db82622ae2d28916bb

  • SSDEEP

    98304:/k3Cyf9yvtb4S4+gl+rQ36/LJrtktFE5uqgi7zNkVumeHh2yeH7rkfvVszH:XtUSRgl+LkFE5uqgi7zEnkfvVszH

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://votteryloeq.shop/api

https://complainnykso.shop/api

https://basedsymsotp.shop/api

https://charistmatwio.shop/api

https://grassemenwji.shop/api

https://stitchmiscpaew.shop/api

https://commisionipwn.shop/api

Targets

    • Target

      2024091477d841af8ae0e94f305843f468fd35fapoetratsnatch

    • Size

      20.8MB

    • MD5

      77d841af8ae0e94f305843f468fd35fa

    • SHA1

      a9bbe3ed67ef4c49b3a9139300dd6ebac6118738

    • SHA256

      7c5b4be6d1d08fe5bc81f0ac5b3ec77f87f73b5a81eef0dd6f45255b22f08edd

    • SHA512

      a0c65ebe441f20e68bf66420766e22e5ceebd4b9b2a781f04a2347274fdc2a52541ab872d600ca23a41947907e120b3dc168bd0caa72a8db82622ae2d28916bb

    • SSDEEP

      98304:/k3Cyf9yvtb4S4+gl+rQ36/LJrtktFE5uqgi7zNkVumeHh2yeH7rkfvVszH:XtUSRgl+LkFE5uqgi7zEnkfvVszH

    Score
    10/10
    discoverylummastealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks