General
-
Target
MultiHack v1.8.zip
-
Size
3.7MB
-
Sample
250103-2xl15sxqex
-
MD5
182d69595edf083ab15ca6780bb7e486
-
SHA1
cedb04b746f26a31041c5e47b0c92e965f3181ae
-
SHA256
0a591f1d9675d2f224b9b3e25cf3431e6aafa5cf33ed77f7d3c98b1b2f1249b4
-
SHA512
fb7815a13fd2fd7b73232c7054196d579625acf36548b71621be4ca4158bee72d0c2669f015efa858820030a20ff4dad00f029d79b5207eeef1368cdf9ad7100
-
SSDEEP
98304:SUTG36zzOC4KL05OevKhYKX0RW/Na1QS0hvT7Ny:SUTG0349O8+YKE8/E1L0d7Ny
Malware Config
Extracted
lumma
https://cloudewahsj.shop/api
https://rabidcowse.shop/api
https://noisycuttej.shop/api
https://tirepublicerj.shop/api
https://framekgirus.shop/api
https://wholersorie.shop/api
https://abruptyopsn.shop/api
https://nearycrepso.shop/api
Extracted
lumma
https://abruptyopsn.shop/api
https://wholersorie.shop/api
https://framekgirus.shop/api
https://tirepublicerj.shop/api
https://noisycuttej.shop/api
https://rabidcowse.shop/api
https://cloudewahsj.shop/api
Targets
-
-
Target
MultiHack v1.8/Loader.exe
-
Size
378KB
-
MD5
ac04927bcbfef5088b7d91267fbdbfef
-
SHA1
bd2de32edc860b7036105ab329735853329e65eb
-
SHA256
d25dd4b84b5e01ff38a4298326496f0baf9459ba21061380fa4d08a55a53a9ce
-
SHA512
9f35899f85c047b46c8c0aa591715cfd179e68eeba811d85adc09f02a9b6db37329cb6d8ce779452871d6b62271f9d0234f92eafa14c286770c9c0f84f74896a
-
SSDEEP
6144:X2pwktDrDuMtMzEzdN1rJOKO3JYBm7vSnBtFVJgHafwEJ5hQ9PvC9IzSDH1v4yk+:n4CN2d3rJ1VE7v0XFVJowxJ5hsvuIeDZ
Score10/10-
Lumma Stealer, LummaC
Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
-
Lumma family
-
Suspicious use of SetThreadContext
-