Overview

overview

10

Static

static

10

1600-12-0x...ry.exe

windows7-x64

1

1600-12-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    1600-12-0x0000000000400000-0x0000000000464000-memory.dmp

  • Size

    400KB

  • MD5

    449a2168bb0837005b43a10d8963db78

  • SHA1

    ff89e9798878de9f902016bf260a56f7e1d3a9fb

  • SHA256

    60ea85943a93a71d3250e51276e1143d98a6b46a1e72b9f6ef722bd9d599475f

  • SHA512

    b2c7c6fb39ddd0eac47302ce64fb3887f8421d3862c7fd4460d26b94cbb637dcf3becea270c886f3aa78aab9eb7c0af2c35f61ff2134c089a20cff3d3510af83

  • SSDEEP

    6144:s9x0hNCCRlSYQbJtE2lGOKd3inD1cERDs7XyFHzKChEnK4BtP9Wu1:s9x0h0CRlSYQbUTAnDXlsuJzKJPP9

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://raciimoppero.shop/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1600-12-0x0000000000400000-0x0000000000464000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections