General

  • Target

    Solara.exe

  • Size

    278KB

  • Sample

    241120-1f1mjayldq

  • MD5

    e6ee570e4a96ccd19ca97d0e7d85dd3c

  • SHA1

    9faa35a4184f227fb116ce3d6e71b80d15a669e4

  • SHA256

    21861808d8b7988c0216c2516f5d8f1830f919ebae247ceb35f92b93286ed426

  • SHA512

    1f161a940d1a2e98ae3b50d04e61fbd5d60c32273eab4f6097c10e713f474e82d2de2e5aa5e60f28f27a62068d9fb2482cf57db4a0b2d8a0baa6a10912ebd4f1

  • SSDEEP

    6144:J23PvJ4c0mmd4BdqmAqytMONJry+tl7O3lHGgs:JyPvJzhBdqii1NJrBtl76lHGgs

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://caffegclasiqwp.shop/api

https://stamppreewntnq.shop/api

https://stagedchheiqwo.shop/api

https://millyscroqwp.shop/api

https://evoliutwoqm.shop/api

https://condedqpwqm.shop/api

https://traineiwnqo.shop/api

https://locatedblsoqp.shop/api

https://froytnewqowv.shop/api

Targets

    • Target

      Solara.exe

    • Size

      278KB

    • MD5

      e6ee570e4a96ccd19ca97d0e7d85dd3c

    • SHA1

      9faa35a4184f227fb116ce3d6e71b80d15a669e4

    • SHA256

      21861808d8b7988c0216c2516f5d8f1830f919ebae247ceb35f92b93286ed426

    • SHA512

      1f161a940d1a2e98ae3b50d04e61fbd5d60c32273eab4f6097c10e713f474e82d2de2e5aa5e60f28f27a62068d9fb2482cf57db4a0b2d8a0baa6a10912ebd4f1

    • SSDEEP

      6144:J23PvJ4c0mmd4BdqmAqytMONJry+tl7O3lHGgs:JyPvJzhBdqii1NJrBtl76lHGgs

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Lumma family

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks