Overview

overview

10

Static

static

4

lummastealer.7z

windows7-x64

7

lummastealer.7z

windows10-2004-x64

10

lummasteal...WS.pdf

windows7-x64

3

lummasteal...WS.pdf

windows10-2004-x64

3

lummasteal...in.pdf

windows7-x64

3

lummasteal...in.pdf

windows10-2004-x64

3

lummasteal...ta.pdf

windows7-x64

3

lummasteal...ta.pdf

windows10-2004-x64

3

lummasteal...ts.pdf

windows7-x64

3

lummasteal...ts.pdf

windows10-2004-x64

3

lummasteal...ng.pdf

windows7-x64

3

lummasteal...ng.pdf

windows10-2004-x64

3

lummasteal...ve.pdf

windows7-x64

3

lummasteal...ve.pdf

windows10-2004-x64

3

lummasteal...te.pdf

windows7-x64

3

lummasteal...te.pdf

windows10-2004-x64

3

lummasteal...te.pdf

windows7-x64

3

lummasteal...te.pdf

windows10-2004-x64

3

lummasteal...ce.pdf

windows7-x64

3

lummasteal...ce.pdf

windows10-2004-x64

3

lummasteal...ne.pdf

windows7-x64

3

lummasteal...ne.pdf

windows10-2004-x64

3

lummasteal...on.pdf

windows7-x64

3

lummasteal...on.pdf

windows10-2004-x64

3

lummasteal...ls.pdf

windows7-x64

3

lummasteal...ls.pdf

windows10-2004-x64

3

lummasteal...ep.pdf

windows7-x64

3

lummasteal...ep.pdf

windows10-2004-x64

3

lummasteal...gs.dll

windows7-x64

1

lummasteal...gs.dll

windows10-2004-x64

1

lummasteal...es.dll

windows7-x64

1

lummasteal...es.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06-12-2024 06:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lummastealer/Data/Media/sparseModels.pdf

  • Size

    101KB

  • MD5

    342f3584b1e934146d8d45166f0a8dc0

  • SHA1

    034b90e9e2740132a973359b190a2bbbdfd86f03

  • SHA256

    0471ffeeed893f18222185c4c2a689aef7c3e67146a77ff5aedb5f4374ddfa59

  • SHA512

    9e9a284ba95922b8789e62c0e6c44061bfaba49576e75e11d7094038600f7cae2600e6970b8e69b78fb99e3ef90e626e6ece1a6cce6f99501bd4815ebe118ffd

  • SSDEEP

    3072:oTgu7RooibIRkPKELh9O7hv+3McpFsUba3QExZ:oTRvi+qHh9TTsUb0H

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\lummastealer\Data\Media\sparseModels.pdf"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1928

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6db79833e7ee08e3d4f8d12aa1f0f046

    SHA1

    65287ae48b2d1d2f666d06a99231c3949461805a

    SHA256

    5a96102ccf53352bc830d6e57c8d1868fe397f8dc18e08758f617458962195d1

    SHA512

    3ee4c52faf2ac0db7859686b13e805970b72c6fbae80647b20da5449448fed0838a55140ef5a2118256d0f7b5ff8f02905c41819cc5cd41aa3e604aaf99f604f

    Download Submit