General

  • Target

    Prova de Violação de Direitos Autorais - TNH10.zip

  • Size

    116.8MB

  • Sample

    241125-q9lelazmcz

  • MD5

    25eb216c54fe7304bbf6dddc84f64e15

  • SHA1

    a62be5f08f1672d40ecf3c5ba0b71c095998ede7

  • SHA256

    9e1b70845f6c7fd5e5d6e2e2edfa1fb2c4f8f9aeece6d6bbff7b44f9054c9af0

  • SHA512

    f863fb22ad874f4e5dadf39f391d118f6273e635e99a6e1691c94fb800d1c9e8b4a349d8848a408ab73228c76e2fac83696a958a312298f0b686b51ea6c6ca12

  • SSDEEP

    3145728:eaUy9WmBuj5V9/97h+8ZYqk/t5YVuxflmaKameBjn9NghzrvuI5KPxOb:ebbmtzm8/BhqrvuI5cOb

Malware Config

Extracted

Family

lumma

C2

https://servicedny.site

https://authorisev.site

https://faulteyotk.site

https://dilemmadu.site

https://contemteny.site

https://goalyfeastz.site

https://opposezmny.site

https://seallysl.site

https://computeryrati.site

Targets

    • Target

      Prova de Violação de Direitos Autorais - TNH10.zip

    • Size

      116.8MB

    • MD5

      25eb216c54fe7304bbf6dddc84f64e15

    • SHA1

      a62be5f08f1672d40ecf3c5ba0b71c095998ede7

    • SHA256

      9e1b70845f6c7fd5e5d6e2e2edfa1fb2c4f8f9aeece6d6bbff7b44f9054c9af0

    • SHA512

      f863fb22ad874f4e5dadf39f391d118f6273e635e99a6e1691c94fb800d1c9e8b4a349d8848a408ab73228c76e2fac83696a958a312298f0b686b51ea6c6ca12

    • SSDEEP

      3145728:eaUy9WmBuj5V9/97h+8ZYqk/t5YVuxflmaKameBjn9NghzrvuI5KPxOb:ebbmtzm8/BhqrvuI5cOb

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Lumma family

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks