General

  • Target

    begit.zip

  • Size

    4.1MB

  • Sample

    241126-1mkvna1nbv

  • MD5

    09a4b2535a791e88b4ebfb0563df5b7e

  • SHA1

    b41188a7194307e374f6a7b4425b157a0947cedd

  • SHA256

    c29aa20740e453ad22c74ea8acd3a04fbc71fe607c3c70493b3aaba3c124235c

  • SHA512

    1a56fb8cacca047999fbd4d39d1c273cf1325bf944e59f3122ff8a00cb15732f27c7a0c25820e39236bb5ffca756f075926bb92bb2c525336d4013ac28037893

  • SSDEEP

    98304:H9eR9nYHES0q8Yfk/zwG0GAn5Xv08+xB7tOkCvs2bDOSuDUWRZ7pgR1hcs:H9eLnYHE0fk/bVOf4xKxmSu4WRZ7pg9H

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://powerful-avoids.sbs

https://motion-treesz.sbs

https://disobey-curly.sbs

https://leg-sate-boat.sbs

https://story-tense-faz.sbs

https://blade-govern.sbs

https://occupy-blushi.sbs

https://frogs-severz.sbs

https://humdrum-screw.cyou

Targets

    • Target

      begit.zip

    • Size

      4.1MB

    • MD5

      09a4b2535a791e88b4ebfb0563df5b7e

    • SHA1

      b41188a7194307e374f6a7b4425b157a0947cedd

    • SHA256

      c29aa20740e453ad22c74ea8acd3a04fbc71fe607c3c70493b3aaba3c124235c

    • SHA512

      1a56fb8cacca047999fbd4d39d1c273cf1325bf944e59f3122ff8a00cb15732f27c7a0c25820e39236bb5ffca756f075926bb92bb2c525336d4013ac28037893

    • SSDEEP

      98304:H9eR9nYHES0q8Yfk/zwG0GAn5Xv08+xB7tOkCvs2bDOSuDUWRZ7pgR1hcs:H9eLnYHE0fk/bVOf4xKxmSu4WRZ7pg9H

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Lumma family

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks