Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NеwInً^.zip

  • Size

    99.0MB

  • Sample

    241015-fm8w9swejh

  • MD5

    f58d191da7364ab0c372aec64427419f

  • SHA1

    bea9388d5dfea539388fd70252554e3e6e817cc0

  • SHA256

    c5acc9474871236cdab3606e045cd315e7de6d45ed2f66f64606b3d716aea090

  • SHA512

    441a628746585c8245c58cde30f4c93e43cf9db5d6fc0182a2f1ec3aef40fab8d3817a1c7aea597091277b4d51f5982cfb97a8656c0669452255d4617e0ffa94

  • SSDEEP

    3145728:BEzbbh9hqhTmO14qQ1u1Ce3Mn9WVaFC6yEF:IvhaTyJ1ugmMn9WVSmEF

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://drawwyobstacw.sbs

https://condifendteu.sbs

https://ehticsprocw.sbs

https://vennurviot.sbs

https://resinedyw.sbs

https://enlargkiw.sbs

https://allocatinow.sbs

https://mathcucom.sbs

Targets

    • Target

      NеwIn.zip

    • Size

      99.0MB

    • MD5

      cf4f95535261f85ecc33cb988ba50e47

    • SHA1

      3d0d44f95b4411fa5f6ea65d1e6e6a1a5014e511

    • SHA256

      997320ef48c4471750d311a9c12e7fe2afc922eaff1451957a73c8bdb38a168b

    • SHA512

      d17504fd06f455e35327fd4fd8c571d96ad4a6d8a0427190d5f98c61842a869a05f636b774b70169da72cf5bb8cb9a1a1bb88a0140bf664759409ace9faa9834

    • SSDEEP

      3145728:AEzbbh9hqhTmO14qQ1u1Ce3Mn9WVaFC6yEW:1vhaTyJ1ugmMn9WVSmEW

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks