General
-
Target
[1.1.0]-Aрр-UNC-x64.zip
-
Size
24.6MB
-
Sample
241231-zs6hwa1pen
-
MD5
14a8c2f7c0529f3cbee686b21004173b
-
SHA1
b95b447897b4be9b53c55220ad69cde184b3fa71
-
SHA256
a0e68504a3071c3ac68c3488e163c948977fccb4b9a477658188ca2f9e668361
-
SHA512
37fac6c8b9004385d98ce515f8d29fcc9615fdfe94408bee83f205fd68953231457fdc9e0f246bd343aba54599afe9bdb2b91d5351b6c2399aa8a61608940665
-
SSDEEP
786432:oQGJGrSgwP4FeSsW10/whM4BH4ksOQkW71BtN:oQS4nsRIht8Ohs7tN
Malware Config
Extracted
lumma
https://cloudewahsj.shop/api
https://rabidcowse.shop/api
https://noisycuttej.shop/api
https://tirepublicerj.shop/api
https://framekgirus.shop/api
https://wholersorie.shop/api
https://abruptyopsn.shop/api
https://nearycrepso.shop/api
https://begguinnerz.biz/api
Extracted
lumma
https://begguinnerz.biz/api
https://abruptyopsn.shop/api
https://wholersorie.shop/api
https://framekgirus.shop/api
https://tirepublicerj.shop/api
https://noisycuttej.shop/api
https://rabidcowse.shop/api
https://cloudewahsj.shop/api
Targets
-
-
Target
[1.1.0]-Aрр-UNC-x64.zip
-
Size
24.6MB
-
MD5
14a8c2f7c0529f3cbee686b21004173b
-
SHA1
b95b447897b4be9b53c55220ad69cde184b3fa71
-
SHA256
a0e68504a3071c3ac68c3488e163c948977fccb4b9a477658188ca2f9e668361
-
SHA512
37fac6c8b9004385d98ce515f8d29fcc9615fdfe94408bee83f205fd68953231457fdc9e0f246bd343aba54599afe9bdb2b91d5351b6c2399aa8a61608940665
-
SSDEEP
786432:oQGJGrSgwP4FeSsW10/whM4BH4ksOQkW71BtN:oQS4nsRIht8Ohs7tN
Score10/10-
Lumma Stealer, LummaC
Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
-
Lumma family
-
Legitimate hosting services abused for malware hosting/C2
-