Overview

overview

10

Static

static

3

794c973279...82.dll

windows7-x64

3

794c973279...82.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    794c973279a07b20f71931ee05e468fb6fc563a3b228b48dbd3ae97b79e3a682.exe

  • Size

    436KB

  • Sample

    241127-g4xe8syjhp

  • MD5

    b9c5c37d8e1968037503ce2539dfd279

  • SHA1

    98804662a3532ef5059e6943c723cbd1f79cef9d

  • SHA256

    794c973279a07b20f71931ee05e468fb6fc563a3b228b48dbd3ae97b79e3a682

  • SHA512

    479a003f8e8a540a0b9f1f194315fdabd40427c25b4be4cccf4c3319f0ccc60b105908cf27605d12118a845e4b309a09a59cf76a09c96803ed37bf2f01762b0e

  • SSDEEP

    12288:vSjnDFs9jijq5+kc20aa6EvS+mfXGtRohddJOQQ1:KjZs3hc2va6rGohddJz8

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://crib-endanger.sbs

https://faintbl0w.sbs

https://300snails.sbs

https://bored-light.sbs

https://3xc1aimbl0w.sbs

https://pull-trucker.sbs

https://fleez-inc.sbs

https://thicktoys.sbs

Targets

    • Target

      794c973279a07b20f71931ee05e468fb6fc563a3b228b48dbd3ae97b79e3a682.exe

    • Size

      436KB

    • MD5

      b9c5c37d8e1968037503ce2539dfd279

    • SHA1

      98804662a3532ef5059e6943c723cbd1f79cef9d

    • SHA256

      794c973279a07b20f71931ee05e468fb6fc563a3b228b48dbd3ae97b79e3a682

    • SHA512

      479a003f8e8a540a0b9f1f194315fdabd40427c25b4be4cccf4c3319f0ccc60b105908cf27605d12118a845e4b309a09a59cf76a09c96803ed37bf2f01762b0e

    • SSDEEP

      12288:vSjnDFs9jijq5+kc20aa6EvS+mfXGtRohddJOQQ1:KjZs3hc2va6rGohddJz8

    Score
    10/10
    discoverylummastealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks