Overview

overview

10

Static

static

3

9f1df77681...a0.dll

windows7-x64

3

9f1df77681...a0.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9f1df776811898a0901dc59b2b519c9aea20d379f1f21a666f434d21844341a0.exe

  • Size

    447KB

  • Sample

    241127-al5wbstmgm

  • MD5

    ddbb018c19ff84a8fe7bad6df2494c46

  • SHA1

    6854704fd6a5a8247fdd938ffff96a4552dd0372

  • SHA256

    9f1df776811898a0901dc59b2b519c9aea20d379f1f21a666f434d21844341a0

  • SHA512

    adbe55fb0bd06cdbec04513a066a50ecc1f87b0eef02fa1610b20162bb1dda6a2cde2e0d43e2c017f64557e0b81581a2f68177b4a29c410512486f63874dd66c

  • SSDEEP

    12288:0jTMt8ii/6HtBE1yCqQXqmGKWxxZ2rkqym916MFXIsrRSot1diuHYoWe531Y4Xz7:0iautBE1yCqQXqmGKWxxZ2rkqym91PXZ

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://p3ar11fter.sbs

https://3xp3cts1aim.sbs

https://owner-vacat10n.sbs

https://peepburry828.sbs

https://p10tgrace.sbs

https://befall-sm0ker.sbs

https://librari-night.sbs

https://processhol.sbs

Targets

    • Target

      9f1df776811898a0901dc59b2b519c9aea20d379f1f21a666f434d21844341a0.exe

    • Size

      447KB

    • MD5

      ddbb018c19ff84a8fe7bad6df2494c46

    • SHA1

      6854704fd6a5a8247fdd938ffff96a4552dd0372

    • SHA256

      9f1df776811898a0901dc59b2b519c9aea20d379f1f21a666f434d21844341a0

    • SHA512

      adbe55fb0bd06cdbec04513a066a50ecc1f87b0eef02fa1610b20162bb1dda6a2cde2e0d43e2c017f64557e0b81581a2f68177b4a29c410512486f63874dd66c

    • SSDEEP

      12288:0jTMt8ii/6HtBE1yCqQXqmGKWxxZ2rkqym916MFXIsrRSot1diuHYoWe531Y4Xz7:0iautBE1yCqQXqmGKWxxZ2rkqym91PXZ

    Score
    10/10
    discoverylummastealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks