Overview

overview

10

Static

static

10

960-16-0x0...ry.exe

windows7-x64

1

960-16-0x0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    960-16-0x0000000000400000-0x0000000000464000-memory.dmp

  • Size

    400KB

  • MD5

    b78e273e8d44c7a82ddd5c87c12be05c

  • SHA1

    98ff18bfb6718565dc29a378be0c68ee75d3e3ab

  • SHA256

    0a5735c709c07045b29b4b3f984133a9c36ab23e0adc9b6cd7836930835f0b23

  • SHA512

    122b20dbe19930c41ee36511fbc12c3048c81562c7492302aa51456d4d7074fbf549fb944eb182e4f9718651986d36e20360b52174c1655c810c66402859ae86

  • SSDEEP

    12288:yEIbJvhk0azddWtyA51C09ssEN8mhGf4:YJvhk0FkA51/9ZENtg

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://strappystyio.shop/api

https://coursedonnyre.shop/api

https://fossillargeiw.shop/api

https://tendencerangej.shop/api

https://appleboltelwk.shop/api

https://tearrybyiwo.shop/api

https://captainynfanw.shop/api

https://surveriysiop.shop/api

https://tiddymarktwo.shop/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 960-16-0x0000000000400000-0x0000000000464000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections