Overview

overview

10

Static

static

3

Set-up.exe

windows7-x64

10

Set-up.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1c0673a22fed0f8b16d07c6f737b4e8d3c23741ba8c639fbd8cf58b073ad05a7.zip

  • Size

    4.2MB

  • Sample

    241230-f7avzazkgs

  • MD5

    4067167bbfd299d398b765a841f4cff0

  • SHA1

    b134e6dbd609e70fbc9f91a8948044e5effb5752

  • SHA256

    1c0673a22fed0f8b16d07c6f737b4e8d3c23741ba8c639fbd8cf58b073ad05a7

  • SHA512

    de617a37d706fd55b5e3d83b6003b9514b7469b058f91ce318d3d741517c43440c27a9c9558cfdf34c786be55c0b553f2555866b63a178efb4da240f8c4e3bc6

  • SSDEEP

    98304:Ca0n/MVUh3ogQL6u0IlYmcjDyUzzmuL3j0P3MWgU2fHRJ0+vjk:8GUhNzTIWxGUzauLKZlMVo

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://sordid-snaked.cyou/api

https://awake-weaves.cyou/api

https://wrathful-jammy.cyou/api

https://debonairnukk.xyz/api

https://diffuculttan.xyz/api

https://effecterectz.xyz/api

https://deafeninggeh.biz/api

https://immureprech.biz/api

Targets

    • Target

      Set-up.exe

    • Size

      900.6MB

    • MD5

      e127af1d5f7b88b78964908a96891d7a

    • SHA1

      afc90f0fb43b2e0fb234cc86cf169ea8ce9405ee

    • SHA256

      88ff8d6b80f8016fae090da8ad01973a46901f96993aada07c0b733675a0865a

    • SHA512

      887a269c4afe324ee7331dbe65cf04640f5e4c1b6cd2833e221a7f9cc541a6be6db18c4de8dfb9c293440319c594cba9e7f60cb33d4a38d8429823488bea10f6

    • SSDEEP

      196608:Z7S9PAZpqz2m2nHfpp3OP+FoxHq4fTtYcgatPdaI30QYyI1BfMRdH:1aPA02/CqfQs

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks