Overview

overview

10

Static

static

10

cea957d2ab...8d.exe

windows7-x64

1

cea957d2ab...8d.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    cea957d2ab409b64d233d873b6c3468d.virus

  • Size

    294KB

  • Sample

    240914-ycbg5asaqq

  • MD5

    cea957d2ab409b64d233d873b6c3468d

  • SHA1

    ecadd7076b0ccf50e2ae42f71ec987ecca4a5fd9

  • SHA256

    173f0433c2baf5e0ae7a7800ca15ffdc741551fd5540553491c391de1953cf1a

  • SHA512

    893b34a4d9008c82cc1f7d37a1b1e02e010ba719f63d0d37ba93e00739fb089c1dc22342017a99abeb6c0887f62726c3e1b8a616d84029fd5acec1c435430a31

  • SSDEEP

    6144:Rz27/XNRnDTDt+4H4C+U0OGmKoUuta4D3wLeZNj2zK/M:RSjdlD44p+U04ltaeALINj22/M

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://upknittsoappz.shop/api

https://unseaffarignsk.shop/api

https://shepherdlyopzc.shop/api

https://liernessfornicsa.shop/api

https://outpointsozp.shop/api

https://callosallsaospz.shop/api

https://lariatedzugspd.shop/api

https://indexterityszcoxp.shop/api

Extracted

Family

lumma

C2

https://upknittsoappz.shop/api

Targets

    • Target

      cea957d2ab409b64d233d873b6c3468d.virus

    • Size

      294KB

    • MD5

      cea957d2ab409b64d233d873b6c3468d

    • SHA1

      ecadd7076b0ccf50e2ae42f71ec987ecca4a5fd9

    • SHA256

      173f0433c2baf5e0ae7a7800ca15ffdc741551fd5540553491c391de1953cf1a

    • SHA512

      893b34a4d9008c82cc1f7d37a1b1e02e010ba719f63d0d37ba93e00739fb089c1dc22342017a99abeb6c0887f62726c3e1b8a616d84029fd5acec1c435430a31

    • SSDEEP

      6144:Rz27/XNRnDTDt+4H4C+U0OGmKoUuta4D3wLeZNj2zK/M:RSjdlD44p+U04ltaeALINj22/M

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks