Overview

overview

10

Static

static

1

Setup.exe

windows7-x64

5

Setup.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file_112d253d25b3400cab2a8c2a376b5f61_2024-11-22_13_37_22_014000.zip

  • Size

    21.4MB

  • Sample

    241125-rfbtqszphv

  • MD5

    7fc2f2bd50bbfcf41aaeb42cbeb3a6b7

  • SHA1

    241a1de1d6e9a2cb511db3f57f181f4fbd156e0a

  • SHA256

    1230f1313b7c82b3fda1ef9f3860d668ed66846cc6252ad2a2b92db29a59d6a9

  • SHA512

    dedb2f70ad5ee0b5a5fd15b47a3bbdeda042a2ecc1c04f2fa171605cd1453b583f72ffd96916775295ffefe7877950d46e039076af6a80936b38568f5d5e87e3

  • SSDEEP

    393216:kl8x7Nb5awfdAPgZ5/2OFUtk3RfJI1q+3hbXQxGPO/Fx81fND93y9zwo07ov:kl8H9bdAPEos3IY8bgftxYfNmTt

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://servicedny.site

https://authorisev.site

https://faulteyotk.site

https://dilemmadu.site

https://contemteny.site

https://goalyfeastz.site

https://opposezmny.site

https://seallysl.site

https://reallymenyb.cyou

Targets

    • Target

      Setup.exe

    • Size

      351.1MB

    • MD5

      b6cf2050dc61fcc253eb7d7f9105f4c8

    • SHA1

      f88ec60af42abdd3b67a980ae14eb4e58b3bc0e7

    • SHA256

      42d6496db190c2800501a8205f23b610e5efe24312fcfe1ea8b9f6d66aaea9f1

    • SHA512

      944de25459b38cce873f6076e14e40bf701f138002bc9182bba37ea08073185430432b24d07c369a023ebfc5d22d8f97dc622c8d9bc98c98c43fbd288ed307fa

    • SSDEEP

      196608:Hi4rZPnHKOfiGJDxGOOBvaxvQAoOQpDbVHqHI+uzIQDQdy1VM1fzN6Do3pOVNAUe:Hi4rZPxfiGJDxGOOBvaxnQzMj

    Score
    10/10
    discoverylummastealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks