Overview

overview

10

Static

static

3

dll/Client...rm.dll

windows7-x64

1

dll/Client...rm.dll

windows10-2004-x64

1

dll/D3D12Core.dll

windows7-x64

1

dll/D3D12Core.dll

windows10-2004-x64

1

dll/d3dcom...47.dll

windows10-2004-x64

1

dll/dbghelp.dll

windows10-2004-x64

1

dll/libEGL.dll

windows7-x64

1

dll/libEGL.dll

windows10-2004-x64

1

dll/libGLESv2.dll

windows7-x64

1

dll/libGLESv2.dll

windows10-2004-x64

1

dll/libogg_64.dll

windows7-x64

1

dll/libogg_64.dll

windows10-2004-x64

1

dll/libvorbis_64.dll

windows7-x64

1

dll/libvorbis_64.dll

windows10-2004-x64

1

dll/libvor...64.dll

windows7-x64

1

dll/libvor...64.dll

windows10-2004-x64

1

dll/mscorlib.dll

windows7-x64

1

dll/mscorlib.dll

windows10-2004-x64

1

dll/msquic.dll

windows7-x64

1

dll/msquic.dll

windows10-2004-x64

1

dll/nvngx_deepdvc.dll

windows7-x64

1

dll/nvngx_deepdvc.dll

windows10-2004-x64

1

dll/nvngx_dlssg.dll

windows7-x64

1

dll/nvngx_dlssg.dll

windows10-2004-x64

1

launcher.exe

windows7-x64

10

launcher.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7c5049b97fb6065b0797da5eca6c94578478cd87e4ae176c68a8bf17f6b03d4a.zip

  • Size

    24.1MB

  • Sample

    250107-ack5katrfy

  • MD5

    9a515545534c64fdfaaeac00594ac2e8

  • SHA1

    c0922eef8a6d56767da589f8992a050ded4c93cc

  • SHA256

    7c5049b97fb6065b0797da5eca6c94578478cd87e4ae176c68a8bf17f6b03d4a

  • SHA512

    1a5d50b8126492cec4e717094643d494c71ac9b59a3e0729a03fe0d943e14bf193c9c6bb5ed8797df5b81c0cf9df90601f694beebb8555431de6a16dfc1da7f8

  • SSDEEP

    393216:Xd3LKhLzFIj0MrO/z6VdegJqKCwBsI65dgmozIVBGeBbalMPhH2l6bfk7EQ2D:RKhLaj0sObGdeWFMgViQeB+qPS6bco

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Targets

    • Target

      dll/ClientNetworkTransform.dll

    • Size

      6KB

    • MD5

      3c01e13d12657868f1431949fa97c3e9

    • SHA1

      a95c1f90e2de13d33e294b693bbc031e9621733b

    • SHA256

      c1eb7876a41815eb52229e79d0c1b122f12f722d94967b90f67ef35d0bf7c522

    • SHA512

      6648a32a37c864c0d9fe72090c775d29607160d85e2e9e88db0cbcde5ddbe47e47e5336f19f14c5189fbe8c3f2551f35e4285de4995b644e0188b0833a9bb915

    • SSDEEP

      96:jxsgyWasOzs2rIvXhls94SfyamE5evAkxk7PgWU3m:QWahBcvXhBxamE5eVu7PJ

    Score
    1/10
    behavioral1behavioral2

    • Target

      dll/D3D12Core.dll

    • Size

      5.4MB

    • MD5

      89a69748e73336c139313bc68effbdc6

    • SHA1

      463d482e903ab34955580ef99e5318f3789517a7

    • SHA256

      1acfe9305468bb2389e014319955cf45586f4207477bec25f8db813ba2a79fca

    • SHA512

      95c82b143bf52fd0ee78e384214b80fd91ac359378448763010d1403c23c041939d4314966a316a7ae4a47461a2829270691a8f5126bddd820588e3b5caecf43

    • SSDEEP

      49152:j9bKt2co4I4EKNOzVw3AF6jYEB1NPmQDgWJMF5Yq0SpC/F2ip4GlLPnns+Rn:pH4E+1J3SzpgLUA

    Score
    1/10
    behavioral3behavioral4

    • Target

      dll/d3dcompiler_47.dll

    • Size

      4.1MB

    • MD5

      222d020bd33c90170a8296adc1b7036a

    • SHA1

      612e6f443d927330b9b8ac13cc4a2a6b959cee48

    • SHA256

      4432bbd1a390874f3f0a503d45cc48d346abc3a8c0213c289f4b615bf0ee84f3

    • SHA512

      ad8c7ce7f6f353da5e2cf816e1a69f1ec14011612e8041e4f9bb6ebed3e0fa4e4ebc069155a0c66e23811467012c201893b9b3b7a947d089ce2c749d5e8910c6

    • SSDEEP

      49152:D5EfJYiVk9w6hAPqzag2At6i5K/8Ub6Lg3MEq/NHiQTtVr+5kb62QgdD6zoodr7P:l7iNPWHYE+Bnm8

    Score
    1/10
    behavioral5

    • Target

      dll/dbghelp.dll

    • Size

      2.1MB

    • MD5

      f97b15a663eb59ba6a9fc766e703c103

    • SHA1

      427e804092f86be73b4a85882c899fa9b2176024

    • SHA256

      4b803d0bfa5d360cfcb3237d260226743d2255eacf6a98615334fb55deb7cf88

    • SHA512

      1e7b97b4e1d55e7aefd0e1c0c8dad965b801602ed899da84308422653bc930ee1cc8125183a5211e4a49eaf655de37adb2bbf8102ecc72f3fa9f7035f3cc8d0d

    • SSDEEP

      49152:awocwVH+umtSiRFXIrZ4mTQHuEnmDdE51p:ahcAH0r+OFrmD01p

    Score
    1/10
    behavioral6

    • Target

      dll/libEGL.dll

    • Size

      404KB

    • MD5

      23cd47d62fe19dc5b89bbf47c3b7ae82

    • SHA1

      7368f0612a8822e467a38f7ab2eea62dfdd04791

    • SHA256

      41aa48f559f7c5ba48e0d1a5158cbba82488cb5abdac2e55e1f5fd207c0274b3

    • SHA512

      d1f404a5d08c7a551be1383a2e5e9d0190020bf9033c81dca6c70c38cc6e17b57819eea17f17d9d73e982b93e7e8c10b30591874c3ec14e023f4b297010f9658

    • SSDEEP

      6144:N1h0bAoNR2gr+g8a3fDt/7Jf/gplBClFJw/VmFmh:Z4cgr+gT3LtYlMjJmVmFu

    Score
    1/10
    behavioral7behavioral8

    • Target

      dll/libGLESv2.dll

    • Size

      6.5MB

    • MD5

      266201bab198487bb26d195a32f07f5d

    • SHA1

      a490e3eb5ac726cb865636b627c390f8790d84bc

    • SHA256

      a69cf85207d41457d4c0aaeec87206de23768681c0c538db84da59f0ca51af0d

    • SHA512

      39835bdef860f268974d8e77eb7aefd19d9685c56c8e7737ef0294469def3d89ac7b912f4cf407577971009eb60086d65a33fa89ddf26b999ccc51d81cc14121

    • SSDEEP

      98304:W0TIBzQCqrJFhfbifS3HvCN9MqDHBIpeyxUT:jTIlQCqrJOa3o9MQj

    Score
    1/10
    behavioral10behavioral9

    • Target

      dll/libogg_64.dll

    • Size

      58KB

    • MD5

      cc5ad76b8c961621384f9553965f6ac2

    • SHA1

      c6587ef07d78a2fe4728c8b936b21f7eb1f3b260

    • SHA256

      cd64a70dc85c1872aa9e5daea947005997fe49945a6b907ff8759d6afc24bae6

    • SHA512

      df65219206bf16c996444e8968a36867f49723328876fed47d218f1db74b9d33af7b4c35b1ba8a70a101c32432c399768488121ffa8d5275a25523d797be11b7

    • SSDEEP

      384:GXKN7KRked7VWjLmPnUunFqphqaNQL2PnQftfKNRvrzAcojOYPuJ6ki2cD+niiuZ:7kSQyQUuFq19HAhjXus2Ml2EF

    Score
    1/10
    behavioral11behavioral12

    • Target

      dll/libvorbis_64.dll

    • Size

      1.6MB

    • MD5

      074f9a4dbec088d01d4adf8ef03541d5

    • SHA1

      d904f2dde2761cffb0a8b986d53ef3ea410a4418

    • SHA256

      405e3570026a37aab41f26c21ea862c9e554d34b15303f72ada57e7bfbdf44e5

    • SHA512

      ae2d07a83f25fe5c0bf2b9005467c1a37cabbf959a7d11ac2d462f4ec7122897381b1c5ea12e0b459d399a8f0af05d0270e6df26195a64a47ae8ad80c5d8cd58

    • SSDEEP

      6144:6bbUbUwlPxtVNA0ueMSMMYGUXoz0A1VoqxRCv35:0ulPcDe2XNS2J

    Score
    1/10
    behavioral13behavioral14

    • Target

      dll/libvorbisfile_64.dll

    • Size

      47KB

    • MD5

      2c19065471fc5fe94399a233c254ca85

    • SHA1

      ccae392ee05330cae52a6655855947dc70e74be3

    • SHA256

      e24a43d6b0e61875c4d46570d5e38ac3329dd42c0857d0935439d913aa3c17c8

    • SHA512

      220cdba175d8321853087b82f22ebb8193dc90734f425ae7fc85da2bcf2007087b0c1863cbfd84f6c3a637e3752ac87ff255f792226d2be131e7a33837926971

    • SSDEEP

      384:ke2rmsvpGwK9QaXYBZ9b/kwmVkSA3/pTNYTdk1aLPHXrgP7gpw5WOOBp8FJ6ki26:6nv89iBswdSAQS7kWW/Bes2Mg62Ep

    Score
    1/10
    behavioral15behavioral16

    • Target

      dll/mscorlib.dll

    • Size

      4.4MB

    • MD5

      c5d62cf1db04caa05e66eb96e928d1fc

    • SHA1

      b46dc35ddbbe9dbcfde706786f484a93c498dd5a

    • SHA256

      5f87104b87a097a881beb1d0352483b7c7b9db8eab1efb55850dfbd9e68d7b52

    • SHA512

      89cb5584d64d8b27dda836ea89cf38b8206093b86c3b9532d29a17f5d0b0f37c1ba1bafb7fced0ddacf7b1f3772e9d293bc3fbf1423c73594df6a3a3478139a4

    • SSDEEP

      98304:WvIAbMst0AH/NNAzzg/IwACSykiMYAldVUndZBlKj4Xl59xWIKWBCFzXjg1WUqSv:W5Yst0AH/NNAzzg/IwACSiwu

    Score
    1/10
    behavioral17behavioral18

    • Target

      dll/msquic.dll

    • Size

      2.4MB

    • MD5

      a2c1cdfb561609d7b61d6a04c10579a6

    • SHA1

      c8610fb64c9b2eacd460b1776d77a2fce801b22d

    • SHA256

      150963f4a05ffddc9a8498ae0ec4ddf5bed762a83b6ad089d2fd8d499101c7ea

    • SHA512

      b74122c94ce89d9bbd8275d9f595b5b344e19559cd822f58a69d62131fa14d042b4ea72f199f4c493f9b5b0b69018bc277297dabd0d8335b5b70d79115673c6e

    • SSDEEP

      49152:tVwASO0Gtlq1IU6idfp1s7NJt0fegH1yZWxWT4ttWDGyPj8VV4:R+FC0144b+88

    Score
    1/10
    behavioral19behavioral20

    • Target

      dll/nvngx_deepdvc.dll

    • Size

      11.9MB

    • MD5

      c379e4858f30a398564428ea3cc52bd4

    • SHA1

      d210d585a593a464b060803366208d55b2f24d99

    • SHA256

      c341fb5857176acd12c7083364a439eb9c34ce7d19009f2e24d8b48823ae0204

    • SHA512

      1a31736573dec8c27d786e75ed9d55a8317a3d8e8d11fee1283299b175fe4b110f23d08f01ec1e89db314525b250e6e1cc5f57d720f05fe7195721c1d3ddc057

    • SSDEEP

      196608:v7IxtW5mLxtW5mDxtW5mKxtW5mOxtW5mSP:soeoOoRoNoxP

    Score
    1/10
    behavioral21behavioral22

    • Target

      dll/nvngx_dlssg.dll

    • Size

      9.0MB

    • MD5

      69e9f9dc32d0aef4e7c986e2339a0e52

    • SHA1

      5d710b40d8c6583f13c476f6560e5d99580e3e1a

    • SHA256

      0f018d0811c4a05ef6302e0065bef8c54e6562358deb5be6bfb45db3df0a8343

    • SHA512

      b009a90bb1ad0da46f478589c78b30a4090f957ea48b5432e67b77a3aa4cd0b7e683af4ae82ae73b9526084d3ddfba1a652c83718a0e044d1a3325f07cc3f996

    • SSDEEP

      98304:NLVTFmHSF7tXhTlZd2hwSAeSUqXjNoJLLTlZd2hwSAeSUqXjNoJLC/:ZVT0YZhLEXSUMNolLLEXSUMNolC/

    Score
    1/10
    behavioral23behavioral24

    • Target

      launcher.exe

    • Size

      8.0MB

    • MD5

      84fb841361dba4e25f75c63add50f379

    • SHA1

      850d8b47a55c2eb436b9054cacba3f838b9c470a

    • SHA256

      5c0ff803e038b2c3eaab26fe829f2ed787bd1ffcb037288a67cb7488b70185b7

    • SHA512

      72ed5dc01e5c7f3125f35b11688beb0a53deb6b0f1fa46c44b6d2b444b2ba48e73aa784b484a526cd063d749770720ace40deda3cca0f6b8b86eddf3a9ac0106

    • SSDEEP

      98304:uaT91jlWktFK67KE+2BG3R+Tth6G7RHH:lZRrKlBO6G9H

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Suspicious use of SetThreadContext

    behavioral25behavioral26

MITRE ATT&CK Enterprise v15

Tasks