General

  • Target

    2.4_Setup2 (228228).zip

  • Size

    518KB

  • Sample

    241030-yhxmjszgrn

  • MD5

    5be7d027d7e569be8dc63b920823f824

  • SHA1

    a88f0a88d7237d3e4ca53d1ef2614b98aa43e086

  • SHA256

    f3cfae59b6060fdafa62ade8c6bb8ec1a71473ed4f3d71472a020d6b6f168ea4

  • SHA512

    cd1fd072c0616f13c0fbe6b2fae7e75e1bf18ca4c97f1979a7a08228c5642c92229edfc272423e75dfb540605cecd1f86eb0f4d2c0db3eb0c43159653c241c4c

  • SSDEEP

    12288:Y2hvMh9hub7JlUbq56wIsqA7XNWjCA0tRKlFQfL:Y2hu7u/cO5UsqhjCjAlFQfL

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://goalyfeastz.site/api

https://contemteny.site/api

https://dilemmadu.site/api

https://authorisev.site/api

Targets

    • Target

      setup.exe

    • Size

      653KB

    • MD5

      c4733dacc058bc2fee94fc377482b2d5

    • SHA1

      40bead6c76f446dbcec68254ec3dd44d51c6aade

    • SHA256

      02e568a6766840b8486f19e020f84997a03d661680f4c0d23246cfa2944590af

    • SHA512

      fd062dfcdc1f085fb87b2a1ccce54715c8a8a8404020a3d4fd0168115962b3360955732cc0d33f3e0af8f15e0872bd470b8a8bc25c845b1ea48db18b11ddf353

    • SSDEEP

      12288:0uM8OZLrEIC6jejDTN2bNBNJrXl8TPpreoiPdEvEJyAWHpTAge:9I4I50fsnNhlKedP+JT+

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Lumma family

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks