Analysis
-
max time kernel
119s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20241010-en -
resource tags
-
submitted
06-12-2024 06:03
General
-
Target
lummastealer/Data/Media/approximate.pdf
-
Size
59KB
-
MD5
55c89b1f20b11e702d840cbf4574b742
-
SHA1
2f433886be63eb9d5d0b8eca6ecb6256c33cfd17
-
SHA256
66b1e32463ea3a105cc89eff3cefd4cb3bd8560ac4690bb0ab5f3ae562890edf
-
SHA512
354f4b526f95df1334e527840e5b99568a4051e5e1272e1e2ce6adb280bcb0538b10b50c72b04d68850b244d6c2f3cda1ed216ac9f3c0621ae1f54d6c15eba3b
-
SSDEEP
1536:0H0KvhS8/tdlNXeVt5Aj+oaKcYsxh+inG:U0KvhZtdlNOVtL1uiG
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\lummastealer\Data\Media\approximate.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD59fbf87d83f46b242caa4a94469d61afc
SHA126117faffb585a47a9002901a088b0878c7fbf5c
SHA256c41ea15708eff49d8d0b75480cf6408c6a9fa1d84193ba83012b725b1e6c5b99
SHA5125ae7080c077d11685a5e713287e26fb26a2368cac861af29f3d3decd681ad394697fdab20ea710533b83a58eb0e37f79bf295f53bbbf64506250ca769f189d1f