General

  • Target

    56fc365c91e437d19a582a267bfee66ae4d2b4e8c9b039523119d7c9dc6c9fce.exe

  • Size

    1.0MB

  • Sample

    241031-cz62nayqaq

  • MD5

    fca874fcb9f344ec26f3ae4d359e75d7

  • SHA1

    f21315cd57ec269b43d6afba58febe39793b72f2

  • SHA256

    56fc365c91e437d19a582a267bfee66ae4d2b4e8c9b039523119d7c9dc6c9fce

  • SHA512

    26b15070ebd0cce7a9c4b2f9188bf5a0fbc30724ffbb48c590e7f2379af896ef05e5a2f8f39462c50aaaa91c57f36394b54453a97b9f779aad379f5d24db8e0e

  • SSDEEP

    24576:1+BNeMxzXC64aUn+EbWKpFOEMalcU3Aa2FTL3JkMt4Qe1CqxO9zTp:cLDxzXC64aUnqKpHlv3Al7JH4t1CUy

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://forbidstow.site/api

https://goalyfeastz.site/api

https://contemteny.site/api

https://dilemmadu.site/api

https://authorisev.site/api

Targets

    • Target

      56fc365c91e437d19a582a267bfee66ae4d2b4e8c9b039523119d7c9dc6c9fce.exe

    • Size

      1.0MB

    • MD5

      fca874fcb9f344ec26f3ae4d359e75d7

    • SHA1

      f21315cd57ec269b43d6afba58febe39793b72f2

    • SHA256

      56fc365c91e437d19a582a267bfee66ae4d2b4e8c9b039523119d7c9dc6c9fce

    • SHA512

      26b15070ebd0cce7a9c4b2f9188bf5a0fbc30724ffbb48c590e7f2379af896ef05e5a2f8f39462c50aaaa91c57f36394b54453a97b9f779aad379f5d24db8e0e

    • SSDEEP

      24576:1+BNeMxzXC64aUn+EbWKpFOEMalcU3Aa2FTL3JkMt4Qe1CqxO9zTp:cLDxzXC64aUnqKpHlv3Al7JH4t1CUy

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Lumma family

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks