General
-
Target
appFile.exe
-
Size
842.2MB
-
Sample
250115-m6g18aspaj
-
MD5
32631b6cbedddd18e184919eac89fb59
-
SHA1
2247e2e6c5fe57c5ca3ee850730dc44b1e7bffa2
-
SHA256
6e866c0894ebce4f67a2a315695dfd3ce79c00ddb9c65dde041722378cb8e80b
-
SHA512
d2842292ab92084e26abce206bdc7ac78ce71d65a1cc005c4503c97c0e4e8dd518b9ece69d547a9a1c86312e303a6620ec1730297a9c2fa20d3681c502e2d582
-
SSDEEP
393216:mopK6oL+cFVb/luYc8iIMKfvAw72b79xrsxLSageNfmsY8LizNP9B1jvXMfReg68:mogVVbdBASom0MUB19Bd8
Static task
static1
Behavioral task
behavioral1
Sample
appFile.exe
Resource
win7-20240903-en
Malware Config
Extracted
lumma
https://craveinjuur.shop/api
Targets
-
-
Target
appFile.exe
-
Size
842.2MB
-
MD5
32631b6cbedddd18e184919eac89fb59
-
SHA1
2247e2e6c5fe57c5ca3ee850730dc44b1e7bffa2
-
SHA256
6e866c0894ebce4f67a2a315695dfd3ce79c00ddb9c65dde041722378cb8e80b
-
SHA512
d2842292ab92084e26abce206bdc7ac78ce71d65a1cc005c4503c97c0e4e8dd518b9ece69d547a9a1c86312e303a6620ec1730297a9c2fa20d3681c502e2d582
-
SSDEEP
393216:mopK6oL+cFVb/luYc8iIMKfvAw72b79xrsxLSageNfmsY8LizNP9B1jvXMfReg68:mogVVbdBASom0MUB19Bd8
-
Lumma family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates processes with tasklist
-