Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

Setup.exe

windows7-x64

3

Setup.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Setup.zip

  • Size

    7.0MB

  • Sample

    240929-rl9yqaxeqj

  • MD5

    a1696ed1e2fc7fe957db5602ace3e20e

  • SHA1

    d6221da53d8ac99ee40dc487be7284e4977fb432

  • SHA256

    d46fec55a36c2d07c0e0178d3e374e3d8f4f1f1d5e0e2585908a2fd54563048f

  • SHA512

    8756c01f6813ae9412753dd35d75020b7629594ef19cca13409a7516122abab9892ef8cb2ba1619edb749b1d3d82680a320150409f1d26f7b30d8c253018ced7

  • SSDEEP

    196608:8aY5pt7oDwMQYGVRIliBltw0pu6vXFe70EOb:xOt7oUTYuzlsqe7W

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://reinforcenh.shop/api

https://stogeneratmns.shop/api

https://fragnantbui.shop/api

https://drawzhotdog.shop/api

https://vozmeatillu.shop/api

https://offensivedzvju.shop/api

https://ghostreedmnu.shop/api

https://gutterydhowi.shop/api

https://branchtriviawlek.shop/api

Extracted

Family

lumma

C2

https://branchtriviawlek.shop/api

https://chaptermusu.store/api

Targets

    • Target

      Setup.exe

    • Size

      770.7MB

    • MD5

      2bdd8a81c932dabdc257da70c2d17d9f

    • SHA1

      77e5737bf6a09572a087b17adb955cdfde77a730

    • SHA256

      6ce60cf34084795ce9cd89841d632e07ac16ab17cf0d29b8397c90ab51ac61f3

    • SHA512

      041968735def0ea6540e0146c721eb1c1e9e977101ce38e742cba9a7d8132adf2e8e58ba3f6c9afcbe0415b80c5c24cccc72a710901ce46fcd8635edb4899270

    • SSDEEP

      98304:N3rAzyTMeJIUxolvEW7GEqsP+psASnvKg1dBgzzylQikx3ucnt114:fpIsEqsGpSnvFo7iWju

    Score
    10/10
    discoverylummastealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks