Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
26/09/2024, 22:37
General
-
Target
4a553c39728410eb0ebd5e530fc47ef1bdf4b11848a69889e8301974fc26cde2.exe
-
Size
352KB
-
MD5
2f1d09f64218fffe7243a8b44345b27e
-
SHA1
72553e1b3a759c17f54e7b568f39b3f8f1b1cdbe
-
SHA256
4a553c39728410eb0ebd5e530fc47ef1bdf4b11848a69889e8301974fc26cde2
-
SHA512
5871e2925ca8375f3c3ce368c05eb67796e1fbec80649d3cc9c39b57ee33f46476d38d3ea8335e2f5518c79f27411a568209f9f6ef38a56650c7436bbaa3f909
-
SSDEEP
6144:yEIbJdhhk012D9kEsrwRdvwoShfvM4MH0RoeAcGho33vXvIKgI5TdFaA51TIrxLD:yEIbJvhk0azddWtyA51C09ssEN8mhGfp
Score
10/10
Malware Config
Extracted
Family
lumma
C2
https://defenddsouneuw.shop/api
Signatures
-
Lumma Stealer, LummaC
Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes
-
C:\Users\Admin\AppData\Local\Temp\4a553c39728410eb0ebd5e530fc47ef1bdf4b11848a69889e8301974fc26cde2.exe"C:\Users\Admin\AppData\Local\Temp\4a553c39728410eb0ebd5e530fc47ef1bdf4b11848a69889e8301974fc26cde2.exe"1⤵
- System Location Discovery: System Language Discovery