Overview

overview

10

Static

static

10

2664-30-0x...ry.exe

windows7-x64

1

2664-30-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2664-30-0x00000000000A0000-0x0000000000103000-memory.dmp

  • Size

    396KB

  • MD5

    4851f6558a8ffd84b82715b8edca0692

  • SHA1

    a2e40ae4e0cb06b67468ba81b47103d7dab92ac2

  • SHA256

    7b4bdf2e1b2c58492e982ed80b6f2d92d6e6496bf3e566544c2bc44e96aa0ab4

  • SHA512

    3aed3c43e9306d0cd74c80e7686df34f5f6fbe298b7d942c5f7282b637d9c572636232c7cbf327a7f4b0007a20ba30d82b7b39d15460eed1311c611c2b484be3

  • SSDEEP

    6144:54EhLPujE0ZiEC/39a1eCDBaIutHShVfMK9dnnx:WEh30Z7CP9oj0if19dn

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://reinforcenh.shop/api

https://stogeneratmns.shop/api

https://fragnantbui.shop/api

https://drawzhotdog.shop/api

https://vozmeatillu.shop/api

https://offensivedzvju.shop/api

https://ghostreedmnu.shop/api

https://gutterydhowi.shop/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2664-30-0x00000000000A0000-0x0000000000103000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections