Overview

overview

10

Static

static

3

d93ba02f67...3d.exe

windows7-x64

3

d93ba02f67...3d.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d93ba02f674ad7f8baf48934a825513d

  • Size

    529KB

  • Sample

    240914-yk84csseqn

  • MD5

    d93ba02f674ad7f8baf48934a825513d

  • SHA1

    da304bd4e3667f82847482fa11a428df479ca380

  • SHA256

    15b1fed98b6408eaf5958136c57bf17eaf5e9defcfab2b957b495127e44abfbc

  • SHA512

    92b12ffece6260d7892c58e7dc055ba94d1d7011bc7f6e57d069fd06b7378c7ec368f89fbee7fc20593520056e5c4efa48bd83a75eedbbd03cff5b4142c16970

  • SSDEEP

    12288:Skn1gqhBLokIW7YjZRfo6pRZ00mlJ2XXo1i208Z:Skn6qvzUjnhyLXZ

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://flyyedreplacodp.shop/api

https://horizonvxjis.shop/api

https://effectivedoxzj.shop/api

https://parntorpkxzlp.shop/api

https://stimultaionsppzv.shop/api

https://grassytaisol.shop/api

https://broccoltisop.shop/api

https://shellfyyousdjz.shop/api

https://bravedreacisopm.shop/api

Extracted

Family

lumma

C2

https://horizonvxjis.shop/api

Targets

    • Target

      d93ba02f674ad7f8baf48934a825513d

    • Size

      529KB

    • MD5

      d93ba02f674ad7f8baf48934a825513d

    • SHA1

      da304bd4e3667f82847482fa11a428df479ca380

    • SHA256

      15b1fed98b6408eaf5958136c57bf17eaf5e9defcfab2b957b495127e44abfbc

    • SHA512

      92b12ffece6260d7892c58e7dc055ba94d1d7011bc7f6e57d069fd06b7378c7ec368f89fbee7fc20593520056e5c4efa48bd83a75eedbbd03cff5b4142c16970

    • SSDEEP

      12288:Skn1gqhBLokIW7YjZRfo6pRZ00mlJ2XXo1i208Z:Skn6qvzUjnhyLXZ

    Score
    10/10
    discoverylummastealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks