lumma | a6e91ae0495fbf7a8bc594c11fe39f14704fee1aeb43204d4e391ad09ba53480

General

Target

2116-3-0x0000000000250000-0x00000000006FF000-memory.dmp
Size

4.7MB
Sample

241127-qwjnvavqgw
MD5

ff146cee89f692a44ab1f856bedc75c6
SHA1

551403e72cd486e25d6c366a9cc724150f947ee3
SHA256

a6e91ae0495fbf7a8bc594c11fe39f14704fee1aeb43204d4e391ad09ba53480
SHA512

0017d4ff64fb0fffcc3629778f413ea610791eaff83340b5d9e0d5976f270df06f8e818ef9c18dc17388be3a282a839612545bed296e28d99249415ace16213d
SSDEEP

49152:8XdGRwh2AIqlgZ387Py8FQTG8Qd0fJJfmIW3NeEaB8tW8cz5HZdSX6h2MhXR:8XYR+2tZ3yPycQCXk+D3iDlZdSX6hjT

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://powerful-avoids.sbs

https://motion-treesz.sbs

https://disobey-curly.sbs

https://leg-sate-boat.sbs

https://story-tense-faz.sbs

https://blade-govern.sbs

https://occupy-blushi.sbs

https://frogs-severz.sbs

https://property-imper.sbs

Targets

- Target
  
  2116-3-0x0000000000250000-0x00000000006FF000-memory.dmp
- Size
  
  4.7MB
- MD5
  
  ff146cee89f692a44ab1f856bedc75c6
- SHA1
  
  551403e72cd486e25d6c366a9cc724150f947ee3
- SHA256
  
  a6e91ae0495fbf7a8bc594c11fe39f14704fee1aeb43204d4e391ad09ba53480
- SHA512
  
  0017d4ff64fb0fffcc3629778f413ea610791eaff83340b5d9e0d5976f270df06f8e818ef9c18dc17388be3a282a839612545bed296e28d99249415ace16213d
- SSDEEP
  
  49152:8XdGRwh2AIqlgZ387Py8FQTG8Qd0fJJfmIW3NeEaB8tW8cz5HZdSX6h2MhXR:8XYR+2tZ3yPycQCXk+D3iDlZdSX6hjT
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2