Overview

overview

10

Static

static

10

2500-30-0x...ry.exe

windows7-x64

1

2500-30-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2500-30-0x0000000000080000-0x00000000000E5000-memory.dmp

  • Size

    404KB

  • MD5

    57031ea413fca99d3b65f3dd88887318

  • SHA1

    962e79a66dcfab0dc2ba3fc5392b60df4e28f914

  • SHA256

    68de240af269140cc7f15341b66d22f6e2c48f1f3a424efa5e3ce5e19db6f126

  • SHA512

    9f8cf0092eb21ba0400b571509e2c76881be2877824fa6896ff21635a8704f3bb9aa765c739b952f5d75ce9b6659e2be1ed2b8baca2df0c6a3f1517275d0e82a

  • SSDEEP

    6144:wu+dAjD8Bi3SDqBMaJE7Mr3mevGQlgURS3H05q:wu+ogBi3SDqGZ7M7mE1RS3

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://reinforcenh.shop/api

https://stogeneratmns.shop/api

https://fragnantbui.shop/api

https://drawzhotdog.shop/api

https://vozmeatillu.shop/api

https://offensivedzvju.shop/api

https://ghostreedmnu.shop/api

https://gutterydhowi.shop/api

https://thighfeingjywk.shop/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2500-30-0x0000000000080000-0x00000000000E5000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections