Overview

overview

10

Static

static

10

d7f82fb48a...1a.exe

windows7-x64

10

d7f82fb48a...1a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d7f82fb48a1f96d0ab9a36fb14331ed1a618e980872830a865a08ae3f4a2d51a.zip

  • Size

    651KB

  • MD5

    48df1349522495797220fdbca34d842b

  • SHA1

    c1de44d4930c7585d941ebe1ac753c60a1bb11c2

  • SHA256

    d7f82fb48a1f96d0ab9a36fb14331ed1a618e980872830a865a08ae3f4a2d51a

  • SHA512

    7efa857c1ab4e76de4022a86d412a0555c663c92c98d4f61e70681690436fac03156bc295a855754218bf227c17d33678c795ab99597c6801848082ff957f81c

  • SSDEEP

    12288:ReIdvFSLpJQBr8JJXindgAP1LbyxEac64p9y:RLdAt6DndgAP1sEa2

Score
10/10
stealerlumma

Malware Config

Extracted

Family

lumma

C2

https://spellshagey.biz/api

Signatures

  • Lumma family
    lumma
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d7f82fb48a1f96d0ab9a36fb14331ed1a618e980872830a865a08ae3f4a2d51a.zip
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections