Overview

overview

10

Static

static

3

2024-12-31...ys.exe

windows7-x64

10

2024-12-31...ys.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-31_50b0772831bcd84108b62f9e32affc02_icedid_rhadamanthys

  • Size

    1.5MB

  • Sample

    241231-l3xf3axpcr

  • MD5

    50b0772831bcd84108b62f9e32affc02

  • SHA1

    e8068f1de58bc7958d5cece3771e87c9b15ad16f

  • SHA256

    face6da8384a96d6df971358c2f6a77ab446b526fcc915c78a57e34ad6c5e496

  • SHA512

    b3934c4992e0a1e98eb3a0d16e8a08d55a7c9419579086535700fe9a129c19cc63d6ae1d4c18dcf3f269dcfe947858c2ae72c4632fdd38351520d05870a66df6

  • SSDEEP

    24576:6ck62RmwdU4KY5GABkuwPKzh+Em1xmvdmc5C65Bwbg6a5fQE4UJ0IiGmOjzbdip:mBk5Whzm1iYMpPcG0Ii0s

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://hummskitnj.buzz/api

https://cashfuzysao.buzz/api

https://appliacnesot.buzz/api

https://screwamusresz.buzz/api

https://inherineau.buzz/api

https://scentniej.buzz/api

https://rebuildeso.buzz/api

https://prisonyfork.buzz/api

Targets

    • Target

      2024-12-31_50b0772831bcd84108b62f9e32affc02_icedid_rhadamanthys

    • Size

      1.5MB

    • MD5

      50b0772831bcd84108b62f9e32affc02

    • SHA1

      e8068f1de58bc7958d5cece3771e87c9b15ad16f

    • SHA256

      face6da8384a96d6df971358c2f6a77ab446b526fcc915c78a57e34ad6c5e496

    • SHA512

      b3934c4992e0a1e98eb3a0d16e8a08d55a7c9419579086535700fe9a129c19cc63d6ae1d4c18dcf3f269dcfe947858c2ae72c4632fdd38351520d05870a66df6

    • SSDEEP

      24576:6ck62RmwdU4KY5GABkuwPKzh+Em1xmvdmc5C65Bwbg6a5fQE4UJ0IiGmOjzbdip:mBk5Whzm1iYMpPcG0Ii0s

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks