General

  • Target

    appFile.exe

  • Size

    842.2MB

  • Sample

    250115-m6g18aspaj

  • MD5

    32631b6cbedddd18e184919eac89fb59

  • SHA1

    2247e2e6c5fe57c5ca3ee850730dc44b1e7bffa2

  • SHA256

    6e866c0894ebce4f67a2a315695dfd3ce79c00ddb9c65dde041722378cb8e80b

  • SHA512

    d2842292ab92084e26abce206bdc7ac78ce71d65a1cc005c4503c97c0e4e8dd518b9ece69d547a9a1c86312e303a6620ec1730297a9c2fa20d3681c502e2d582

  • SSDEEP

    393216:mopK6oL+cFVb/luYc8iIMKfvAw72b79xrsxLSageNfmsY8LizNP9B1jvXMfReg68:mogVVbdBASom0MUB19Bd8

Score
10/10

Malware Config

Extracted

Family

lumma

C2

https://craveinjuur.shop/api

Targets

    • Target

      appFile.exe

    • Size

      842.2MB

    • MD5

      32631b6cbedddd18e184919eac89fb59

    • SHA1

      2247e2e6c5fe57c5ca3ee850730dc44b1e7bffa2

    • SHA256

      6e866c0894ebce4f67a2a315695dfd3ce79c00ddb9c65dde041722378cb8e80b

    • SHA512

      d2842292ab92084e26abce206bdc7ac78ce71d65a1cc005c4503c97c0e4e8dd518b9ece69d547a9a1c86312e303a6620ec1730297a9c2fa20d3681c502e2d582

    • SSDEEP

      393216:mopK6oL+cFVb/luYc8iIMKfvAw72b79xrsxLSageNfmsY8LizNP9B1jvXMfReg68:mogVVbdBASom0MUB19Bd8

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Lumma family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates processes with tasklist

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.