Overview

overview

10

Static

static

10

4996-8-0x0...ry.exe

windows7-x64

1

4996-8-0x0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4996-8-0x0000000001240000-0x00000000012A4000-memory.dmp

  • Size

    400KB

  • MD5

    1df029da84e70c431b918b7b1020a54f

  • SHA1

    d15afa5bb5693bd6f6b52da3a3c293310fe22d33

  • SHA256

    3306d55ec2588b3385a814205d928b3fb12e0de6c944dbe7deaa50e5c0e2dbb6

  • SHA512

    7de624aebcf6f2c6b8218053dd81213bfa9b56e2aaa9c2b511c8598721e082351132bcfe9bebe9a2a67dd324a695c2cdc15b3d3531d474ab3f89aa8004601354

  • SSDEEP

    6144:J2t+hyDetsx7r8z6W0wnsu2gAzU3AjPr9GguV5JHWcZdej6S:Qt2uBr8zfJsu2UwjPrU5RpZMj7

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://covvercilverow.shop/api

https://surroundeocw.shop/api

https://abortinoiwiam.shop/api

https://pumpkinkwquo.shop/api

https://priooozekw.shop/api

https://deallyharvenw.shop/api

https://defenddsouneuw.shop/api

https://racedsuitreow.shop/api

https://agreedmeanynj.shop/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4996-8-0x0000000001240000-0x00000000012A4000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections