Overview

overview

10

Static

static

10

2496-3-0x0...ry.exe

windows7-x64

1

2496-3-0x0...ry.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2496-3-0x0000000000D50000-0x0000000001069000-memory.dmp

  • Size

    3.1MB

  • MD5

    10b5457125373f7c49a9be84bbe8ae3c

  • SHA1

    efc3e477d5ab15eb09d13da1bcdd82f2036d1010

  • SHA256

    4e6ea18cc7592d660cecdddff3cb8ead95c2adb979aff261cd532583438e4ff7

  • SHA512

    b0faee5f9d24de82a761f34747386fcf34ee91b6ef404ffc7fd345cd3c32379aae2e74e162f66ccc0bde7a515b106d5b736198344a8c6442e6dd9f4629caf94f

  • SSDEEP

    49152:uAn1cxUSyLWbb8HNXLaeIPOcBRn2fdbscVnIvl9Q:u4cxUSySbbSaekOcfadbM

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://clearancek.site

https://licendfilteo.site

https://spirittunek.store

https://bathdoomgaz.store

https://studennotediw.store

https://dissapoiznw.store

https://eaglepawnoy.store

https://mobbipenju.store

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2496-3-0x0000000000D50000-0x0000000001069000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections