Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    783835af9c1f0e1bacfe157283750426.exe

  • Size

    366KB

  • Sample

    240927-kybs5avbrj

  • MD5

    783835af9c1f0e1bacfe157283750426

  • SHA1

    de15b03c88bff76920bf81a7781d8f43449f9bb1

  • SHA256

    b6628335dabb15d711f53e325ab84fbf2488e37928b2535731f956d9cc175bac

  • SHA512

    ae1220cf0e187994691840f74ea9ecbc2f64573c2ea6be2ded8fb6eaee1fb00bbd74e4464852a4643363e67b2c0c2c63fe2b27bc74d5cb44c40df5401b5e5f0f

  • SSDEEP

    6144:2zmK8OG8oVUPpgrvT4pVKirUuVd1Z7fjIVIGKIgEC6+YA/AQW3otr/W4/NxP9V+O:2KRmPpgrvMpYwb6qbZ/EYk4v9TTyP

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://reinforcenh.shop/api

https://stogeneratmns.shop/api

https://fragnantbui.shop/api

https://drawzhotdog.shop/api

https://vozmeatillu.shop/api

https://offensivedzvju.shop/api

https://ghostreedmnu.shop/api

https://gutterydhowi.shop/api

https://lootebarrkeyn.shop/api

Targets

    • Target

      783835af9c1f0e1bacfe157283750426.exe

    • Size

      366KB

    • MD5

      783835af9c1f0e1bacfe157283750426

    • SHA1

      de15b03c88bff76920bf81a7781d8f43449f9bb1

    • SHA256

      b6628335dabb15d711f53e325ab84fbf2488e37928b2535731f956d9cc175bac

    • SHA512

      ae1220cf0e187994691840f74ea9ecbc2f64573c2ea6be2ded8fb6eaee1fb00bbd74e4464852a4643363e67b2c0c2c63fe2b27bc74d5cb44c40df5401b5e5f0f

    • SSDEEP

      6144:2zmK8OG8oVUPpgrvT4pVKirUuVd1Z7fjIVIGKIgEC6+YA/AQW3otr/W4/NxP9V+O:2KRmPpgrvMpYwb6qbZ/EYk4v9TTyP

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks