Overview

overview

10

Static

static

3

boom 3-d 1...ck.exe

windows7-x64

10

boom 3-d 1...ck.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5aa15ac564d799553730acb66433708f8447eec1f0965235e8417fe50e25e480.zip

  • Size

    8.0MB

  • Sample

    241230-f7a6qszkgv

  • MD5

    bd19c9f4fdf1813100c94d92e7f9d179

  • SHA1

    0bb925a9f917ad9657aee00fd7e197e3145ed2d7

  • SHA256

    5aa15ac564d799553730acb66433708f8447eec1f0965235e8417fe50e25e480

  • SHA512

    9f7a6507cbb312443cec0246f0928744dcc6a7383a8a90cd989458c885582e44f3489e5b29eecf3aaa3d99aabdfaf9d5edae1dae5ee1c8e098b2a2b103ecb563

  • SSDEEP

    196608:17qM+McCnvSiuC5XqyEdj3/4MTMCojVNkV6Klyi:1gMjnZ9XJEVvDTMbjX66KMi

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://crib-endanger.sbs/api

https://faintbl0w.sbs/api

https://300snails.sbs/api

https://bored-light.sbs/api

https://3xc1aimbl0w.sbs/api

https://pull-trucker.sbs/api

https://fleez-inc.sbs/api

https://thicktoys.sbs/api

Targets

    • Target

      boom 3-d 1.0 complete crack.exe

    • Size

      802.0MB

    • MD5

      daf2de1418ff3dd058d6fd3db58a4024

    • SHA1

      ab5e431fa1edb8b076bc3d323dbaf25fb654b650

    • SHA256

      cd7138bfaa8229d0dcd151ed2e4e463684e87e1532f875b7c520a5614df8819b

    • SHA512

      8307efaf50386f1c0d085270a7d73e8bf66642f7b8f9cfb014830dcc05eab87c20d4c42bdadbbd717205ab84a718e97719fe4c536e8bac2a19c979cd3ca01fde

    • SSDEEP

      1572864:F2NqGpzREuQRZPGyWcAEfRvnFzSDTnFnuda/:uqAovx

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates processes with tasklist

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks