lumma | c36e4d70dd05a93a2b49e5db0dccf7edf6f8cfc4dfe3240d913da4d4361b6d13

General

Target

4384-41-0x00000000008D0000-0x0000000000D7E000-memory.dmp
Size

4.7MB
Sample

241127-p4lmqs1jcq
MD5

27909b6282efbeb6334e51b997902b79
SHA1

0a870dda790a334815a3fb09a087f90048e7b3fb
SHA256

c36e4d70dd05a93a2b49e5db0dccf7edf6f8cfc4dfe3240d913da4d4361b6d13
SHA512

86e68bd7a549af17fa4ed375e85aa335b69f4e74a4b22b2362a59a38b97be4998b70415bab00a6eaf245772423da74caba7a51fcce5c2926dd0abdae75422c80
SSDEEP

98304:UM4pBiDiPCH5C9JInwhXmz+31xozvgKznvD8YN4wKLYKl:r4pMOO4ozvgKzn4YN4ZLll

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://powerful-avoids.sbs

https://motion-treesz.sbs

https://disobey-curly.sbs

https://leg-sate-boat.sbs

https://story-tense-faz.sbs

https://blade-govern.sbs

https://occupy-blushi.sbs

https://frogs-severz.sbs

https://property-imper.sbs

Targets

- Target
  
  4384-41-0x00000000008D0000-0x0000000000D7E000-memory.dmp
- Size
  
  4.7MB
- MD5
  
  27909b6282efbeb6334e51b997902b79
- SHA1
  
  0a870dda790a334815a3fb09a087f90048e7b3fb
- SHA256
  
  c36e4d70dd05a93a2b49e5db0dccf7edf6f8cfc4dfe3240d913da4d4361b6d13
- SHA512
  
  86e68bd7a549af17fa4ed375e85aa335b69f4e74a4b22b2362a59a38b97be4998b70415bab00a6eaf245772423da74caba7a51fcce5c2926dd0abdae75422c80
- SSDEEP
  
  98304:UM4pBiDiPCH5C9JInwhXmz+31xozvgKznvD8YN4wKLYKl:r4pMOO4ozvgKzn4YN4ZLll
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2