Overview

overview

10

Static

static

10

5772f1471c...19.exe

windows7-x64

10

5772f1471c...19.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    93s
  • max time network
    96s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/10/2024, 07:04

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    5772f1471ce8d97648e938ab44cf96b092005cbdbe3ae4c7b82ed6613162de19.exe

  • Size

    423KB

  • MD5

    0bc6fd6e1d6b048d5fe2b6f954e6fa5b

  • SHA1

    8c9ae0bc538ab93ac3794d6dff53ca8dd91f1628

  • SHA256

    5772f1471ce8d97648e938ab44cf96b092005cbdbe3ae4c7b82ed6613162de19

  • SHA512

    32e938a74b1e578749bcb9134a7ff2dc9a38c3d93753d0852405fd6d29e84a2b2f34bab0e666175ce8140fa9592eb73488177b9ee94aad76c1dadd2fab524633

  • SSDEEP

    6144:2wZwkGdlrK8q2b2ejOYelIkd4qONrMeHPtrNLbCasiGy2DHWOBDzvwjeXRA3M6QL:HiPdlrK8q2YrZqBMLiU71EjLTRMY2

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://giffrooypwm.shop/api

https://gravvitywio.store/api

Signatures

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\5772f1471ce8d97648e938ab44cf96b092005cbdbe3ae4c7b82ed6613162de19.exe
    "C:\Users\Admin\AppData\Local\Temp\5772f1471ce8d97648e938ab44cf96b092005cbdbe3ae4c7b82ed6613162de19.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1408

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads