Overview

overview

10

Static

static

1

Phasmaphob...O).rar

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Phasmaphobia_ModMenu(SaveEditor) by ASLMANGA (ENZO).rar

  • Size

    52.6MB

  • Sample

    241128-lxg47atmhy

  • MD5

    706ced88574417c34327dd6e9476ee69

  • SHA1

    f83a57240147b3e0cf32b3b383794098b9c616af

  • SHA256

    9ec8062fa17c921539901fb021262569984f043780a829782b4d3be6852ef118

  • SHA512

    de03eaef3b58263f21c79397459a4be2b9d22a8c4ea22726759471d52f580c296c8c6d915fde2ac65567b1f6b349d839ca20a28db1a7ac0e80014b19f00c4623

  • SSDEEP

    1572864:jjDsOF3PCRQrRvF1RGrxnmKNpILAzOtA3g:LLlvF1R4vaaw

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://powerful-avoids.sbs

https://motion-treesz.sbs

https://disobey-curly.sbs

https://leg-sate-boat.sbs

https://story-tense-faz.sbs

https://blade-govern.sbs

https://occupy-blushi.sbs

https://frogs-severz.sbs

https://dangerou5533.cyou

Targets

    • Target

      Phasmaphobia_ModMenu(SaveEditor) by ASLMANGA (ENZO).rar

    • Size

      52.6MB

    • MD5

      706ced88574417c34327dd6e9476ee69

    • SHA1

      f83a57240147b3e0cf32b3b383794098b9c616af

    • SHA256

      9ec8062fa17c921539901fb021262569984f043780a829782b4d3be6852ef118

    • SHA512

      de03eaef3b58263f21c79397459a4be2b9d22a8c4ea22726759471d52f580c296c8c6d915fde2ac65567b1f6b349d839ca20a28db1a7ac0e80014b19f00c4623

    • SSDEEP

      1572864:jjDsOF3PCRQrRvF1RGrxnmKNpILAzOtA3g:LLlvF1R4vaaw

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks