Overview

overview

10

Static

static

1

a9345000b8...2c.exe

windows7-x64

10

a9345000b8...2c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    976a25d2fed5fc7c8700588a33c6826c.bin

  • Size

    432KB

  • Sample

    250103-btbg5awrck

  • MD5

    a8cf19ca52be8d7f60a5bb3247259737

  • SHA1

    e873fc83f8f3a45afd822746e2d89eb326a21ff3

  • SHA256

    5d5e1b22364838da6cf526b07b95aba69fd2864f2d1204b757551897041b4370

  • SHA512

    14df183a71600725c8510dcde7c73dd451eed4fb308d81383852fefe5955190a58a94c7e4695f1c47965173ee5669905f4f606d813b07f3f468e78f12431eb1f

  • SSDEEP

    12288:1SWgxVbLB8Gq9tH3WL7fxZcG+oqdMIxHUJt8kdh2:Q/nbLB8Ptmx/+oqd9x0JA

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://hummskitnj.buzz/api

https://cashfuzysao.buzz/api

https://appliacnesot.buzz/api

https://screwamusresz.buzz/api

https://inherineau.buzz/api

https://scentniej.buzz/api

https://rebuildeso.buzz/api

https://prisonyfork.buzz/api

https://mindhandru.buzz/api

Targets

    • Target

      a9345000b80b1dd7e5ab5f1491771d39230c83311a1f1b98502f07df453ef02c.exe

    • Size

      554KB

    • MD5

      976a25d2fed5fc7c8700588a33c6826c

    • SHA1

      cce0da8a52a534d6252e716f8476193587e84745

    • SHA256

      a9345000b80b1dd7e5ab5f1491771d39230c83311a1f1b98502f07df453ef02c

    • SHA512

      d00f6e9841175880be5083b950a62b97b5496f461cb96b51a9332166e90969871127cc056265f23d5f7692a886227045173ce6439a42eca9c1b31af4fc399564

    • SSDEEP

      12288:oYO6Dqzihouxpa+yWTKbuQ4bUJRNds4b/gCJPEO:tO6DThou2+yDbZkUJ3dsPIPt

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks