Resubmissions
30/12/2024, 05:11
241230-fvptcsyqcs 1030/12/2024, 05:11
241230-fvctssyqbw 1030/12/2024, 04:46
241230-fd93zaymck 1030/12/2024, 04:07
241230-epynmsxpar 1030/12/2024, 01:24
241230-bsdwvstkdk 1030/12/2024, 01:15
241230-bmjj6asrbl 1030/12/2024, 01:05
241230-bfq1nasncy 1030/12/2024, 01:03
241230-benh5ssnfp 1030/12/2024, 00:49
241230-a6hxassldp 1030/12/2024, 00:46
241230-a4y6haskgw 10General
-
Target
32d19e06226164729a88de658e21e3667b410372f0225740cd8321aa404b0bce.zip
-
Size
322KB
-
Sample
241230-benh5ssnfp
-
MD5
246c8dcc5acab23c11b584ce15e44ce3
-
SHA1
89539b3915d8a8d99ab32ecf7f36d69ae6fd36ee
-
SHA256
32d19e06226164729a88de658e21e3667b410372f0225740cd8321aa404b0bce
-
SHA512
57099f5974d6160ff4a2eb10884d21fc1b8ce251a94f9989d81224236b8f3a2a7ac3b2b82f1ab1b82144ca86b953cbb9b0cfbb3b55c531d387e72a6912b67447
-
SSDEEP
6144:A/FOqpLVnfxMl/zqzcJa4D8FCvD1qOQIB3f7:A/FppxnfxMUeoC0OTB
Malware Config
Extracted
lumma
https://sordid-snaked.cyou/api
https://awake-weaves.cyou/api
https://wrathful-jammy.cyou/api
https://debonairnukk.xyz/api
https://diffuculttan.xyz/api
https://effecterectz.xyz/api
https://deafeninggeh.biz/api
https://immureprech.biz/api
https://spellshagey.biz/api
Targets
-
-
Target
32d19e06226164729a88de658e21e3667b410372f0225740cd8321aa404b0bce.zip
-
Size
322KB
-
MD5
246c8dcc5acab23c11b584ce15e44ce3
-
SHA1
89539b3915d8a8d99ab32ecf7f36d69ae6fd36ee
-
SHA256
32d19e06226164729a88de658e21e3667b410372f0225740cd8321aa404b0bce
-
SHA512
57099f5974d6160ff4a2eb10884d21fc1b8ce251a94f9989d81224236b8f3a2a7ac3b2b82f1ab1b82144ca86b953cbb9b0cfbb3b55c531d387e72a6912b67447
-
SSDEEP
6144:A/FOqpLVnfxMl/zqzcJa4D8FCvD1qOQIB3f7:A/FppxnfxMUeoC0OTB
Score10/10-
Lumma Stealer, LummaC
Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
-
Lumma family
-