lumma | 7194b1bb178118c8e7f79c0383508363bb54165abd228a95d63d769c7c260436

General

Target

3068-3-0x00000000000D0000-0x000000000056C000-memory.dmp
Size

4.6MB
Sample

241127-nndfrayjfq
MD5

63f728a3ae5925154dd10600a2e8db55
SHA1

e1be9ca958b4ba66256f718dee555e2f5c89b512
SHA256

7194b1bb178118c8e7f79c0383508363bb54165abd228a95d63d769c7c260436
SHA512

eac3527a4ce8d7da70adae4c5cbebbe68ab680c2cc08b666a9e7fc0c1ab2e7cbba70d58c075db208cb731665fc36011c1f51feee319f1320b2a2adc2b39272f3
SSDEEP

98304:cF4p0CG4hyfoD/aItfU8SbpDoTmXtTq7g:64pSf812O8e

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://powerful-avoids.sbs

https://motion-treesz.sbs

https://disobey-curly.sbs

https://leg-sate-boat.sbs

https://story-tense-faz.sbs

https://blade-govern.sbs

https://occupy-blushi.sbs

https://frogs-severz.sbs

https://property-imper.sbs

Targets

- Target
  
  3068-3-0x00000000000D0000-0x000000000056C000-memory.dmp
- Size
  
  4.6MB
- MD5
  
  63f728a3ae5925154dd10600a2e8db55
- SHA1
  
  e1be9ca958b4ba66256f718dee555e2f5c89b512
- SHA256
  
  7194b1bb178118c8e7f79c0383508363bb54165abd228a95d63d769c7c260436
- SHA512
  
  eac3527a4ce8d7da70adae4c5cbebbe68ab680c2cc08b666a9e7fc0c1ab2e7cbba70d58c075db208cb731665fc36011c1f51feee319f1320b2a2adc2b39272f3
- SSDEEP
  
  98304:cF4p0CG4hyfoD/aItfU8SbpDoTmXtTq7g:64pSf812O8e
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2