Overview

overview

10

Static

static

3

Iaun3r_WlN...up.exe

windows10-2004-x64

10

Iaun3r_WlN...up.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Iaun3r_1313.rar

  • Size

    129.2MB

  • Sample

    240929-zn52jstfqg

  • MD5

    263b1b6c60876f6273b589754440297c

  • SHA1

    bef3f193ce1b29654effd4c7b7dcd6fdfc622ec7

  • SHA256

    f8c3888d0750849760a3a065723439998b44ecfbdf07c5cacd68e7457b7674d3

  • SHA512

    e068acb9f7133b3519a611ed10e653a86436a84a0478bb25ddee284015d7145246793e9dd0ef40fae3df7654012938afc598d47625b9944b19915c7b88e2e822

  • SSDEEP

    3145728:nnGf1RXmukrRvcxRmJJTtyZvQyxCpwnLqrnBCsaD7eXpR9Xy:nnGfr29ETyttWvQyxC6qrnBTaD7eXrly

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://worldresource.shop/api

Extracted

Family

lumma

C2

https://worldresource.shop/api

https://possiwreeste.site/api

https://underlinemdsj.site/api

https://chaptermusu.store/api

Targets

    • Target

      Iaun3r_WlNN_x_64-86_v.3.1.+P0rtabI3xtn/Setup.exe

    • Size

      669.6MB

    • MD5

      bc61ee5b2e522c3f8a63dcad9456fc93

    • SHA1

      920bb436ac21b753e8bfa5bfc7589a27348923a3

    • SHA256

      4fdcaaf148a6e2a6830854821aed3101f6bd40e02076e5a17c9c72eaa839ffd6

    • SHA512

      7fe1aba8313ec7a741a55649342a1d7b60081bb7842325f841fdba39f9965d1a98b3d134914099d6373d204209b152200e542a536334a475083740fa710f78c6

    • SSDEEP

      196608:neS01EoyMCMReGFSMX7ATAoj0lOUOFS2T/swTmN:neSGPt+GFSMX

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks