Overview

overview

10

Static

static

10

3837b0eba9...bd.exe

windows7-x64

10

3837b0eba9...bd.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    94s
  • max time network
    96s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-10-2024 01:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3837b0eba9b3c357934f955be0966b3ed1519e7e64f17f17ca0ff0a3574784bd.exe

  • Size

    455KB

  • MD5

    a5ff3405724cb46e2f229e77674894ca

  • SHA1

    9d700cd01e1bc022dfbe0bfd1aac2f78ce130fbd

  • SHA256

    3837b0eba9b3c357934f955be0966b3ed1519e7e64f17f17ca0ff0a3574784bd

  • SHA512

    02d519bb6be2b130c9509172fdaabc2d6783c44f7fdb25838c178b5f8f31e4adc03e86d831ba89fdb5c6c6120ff97f653cab9a9ec54598df96efcaf4797c84d4

  • SSDEEP

    12288:zPba9M4oKDQihn5ImzLasY+I5nnWl29ph5:zPba9M47DQA5ImzLaseUlgph5

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://beearvagueo.site/api

Signatures

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\3837b0eba9b3c357934f955be0966b3ed1519e7e64f17f17ca0ff0a3574784bd.exe
    "C:\Users\Admin\AppData\Local\Temp\3837b0eba9b3c357934f955be0966b3ed1519e7e64f17f17ca0ff0a3574784bd.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2608

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads