Overview

overview

10

Static

static

3

bigurj.exe

windows7-x64

3

bigurj.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bigurj.exe

  • Size

    338KB

  • Sample

    250107-wxpt5sspbx

  • MD5

    b251696872aa6e65824bb3c09917a575

  • SHA1

    45a987b49a7e02b777d0bf7db2ca039a0d031bb3

  • SHA256

    90dfa09e50fe4fb0ace2fd9cdf49a33cc959e15daf2cd32d9d621d62a09460aa

  • SHA512

    847cebfe7b4f6de95f02579ddd977db214f37883250aa681e0088a75baa2d5b17dc2a23434d727561dfdb2626662d95d1efe122f81510c28306c1897e6d0b5c1

  • SSDEEP

    6144:yx6cyJSvf7LDxbfi122+EKOmf9etCu+hglHWMU+VyvB+x9cw1:yocTvf7xO1ZDsocu+Kpjsvycw1

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Targets

    • Target

      bigurj.exe

    • Size

      338KB

    • MD5

      b251696872aa6e65824bb3c09917a575

    • SHA1

      45a987b49a7e02b777d0bf7db2ca039a0d031bb3

    • SHA256

      90dfa09e50fe4fb0ace2fd9cdf49a33cc959e15daf2cd32d9d621d62a09460aa

    • SHA512

      847cebfe7b4f6de95f02579ddd977db214f37883250aa681e0088a75baa2d5b17dc2a23434d727561dfdb2626662d95d1efe122f81510c28306c1897e6d0b5c1

    • SSDEEP

      6144:yx6cyJSvf7LDxbfi122+EKOmf9etCu+hglHWMU+VyvB+x9cw1:yocTvf7xO1ZDsocu+Kpjsvycw1

    Score
    10/10
    discoverylummastealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks