General

  • Target

    Temp-Spoofer-Lifetime-main.zip

  • Size

    1.4MB

  • Sample

    250112-csyrps1phx

  • MD5

    4f37485f6c5f7a7aa4505161e1dea49d

  • SHA1

    80298bea7b2361f3b4051e92408d065090538da6

  • SHA256

    53b3fdd2a57c347ed62b00b3e7a5656b87459b9e6a7d85e4891a1a08b8f03b46

  • SHA512

    3eb507aeb75652065294c96cedf01506f5c4073bd23c2394df7373710bbf492ec5e5c14864aa0d67f5d250464ce2c31170b03712448208b48b8e692e2595e5cd

  • SSDEEP

    24576:k6UGpuVhxFetCJg7vdGZj+orESSGx6XflRyR8cpE2I0gxiO521UcgazBGAVZ:k6vuPx4tCJg7vEZjFr1x+fYjB22LFVZ

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://sordid-snaked.cyou/api

https://awake-weaves.cyou/api

https://wrathful-jammy.cyou/api

https://debonairnukk.xyz/api

https://diffuculttan.xyz/api

https://effecterectz.xyz/api

https://deafeninggeh.biz/api

https://immureprech.biz/api

Targets

    • Target

      Temp-Spoofer-Lifetime-main.zip

    • Size

      1.4MB

    • MD5

      4f37485f6c5f7a7aa4505161e1dea49d

    • SHA1

      80298bea7b2361f3b4051e92408d065090538da6

    • SHA256

      53b3fdd2a57c347ed62b00b3e7a5656b87459b9e6a7d85e4891a1a08b8f03b46

    • SHA512

      3eb507aeb75652065294c96cedf01506f5c4073bd23c2394df7373710bbf492ec5e5c14864aa0d67f5d250464ce2c31170b03712448208b48b8e692e2595e5cd

    • SSDEEP

      24576:k6UGpuVhxFetCJg7vdGZj+orESSGx6XflRyR8cpE2I0gxiO521UcgazBGAVZ:k6vuPx4tCJg7vEZjFr1x+fYjB22LFVZ

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Lumma family

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks