Overview

overview

10

Static

static

3

9857c06ea4...42.exe

windows7-x64

10

9857c06ea4...42.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9857c06ea4a5fd183593506b4d3952ba5a9fe67396930f8e9023af771129ac42

  • Size

    1.5MB

  • Sample

    250120-r14egstrbl

  • MD5

    7513ddc0725a3859ca9e4bba9e6ad831

  • SHA1

    48a7ac1b3127d9ff4acc7c8f89e2980eb977474c

  • SHA256

    9857c06ea4a5fd183593506b4d3952ba5a9fe67396930f8e9023af771129ac42

  • SHA512

    102d34cc402a26eddf1a7e5a9fbfd0f5623ab466518e2234d309e5489c4aefb0ad1b83c03044079f7fbfb2ab61dde62b9785065fb70ec93548eae6c77062d977

  • SSDEEP

    24576:O9m+6gpj5uvicCIiSkEs2gWRykuIgxVThEMK1PUDaO/R4wbbz+rA8G0vBVaFHR1Q:bGpj5uv9uIg3TaM6UpR3bbxJ71o8+

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Targets

    • Target

      9857c06ea4a5fd183593506b4d3952ba5a9fe67396930f8e9023af771129ac42

    • Size

      1.5MB

    • MD5

      7513ddc0725a3859ca9e4bba9e6ad831

    • SHA1

      48a7ac1b3127d9ff4acc7c8f89e2980eb977474c

    • SHA256

      9857c06ea4a5fd183593506b4d3952ba5a9fe67396930f8e9023af771129ac42

    • SHA512

      102d34cc402a26eddf1a7e5a9fbfd0f5623ab466518e2234d309e5489c4aefb0ad1b83c03044079f7fbfb2ab61dde62b9785065fb70ec93548eae6c77062d977

    • SSDEEP

      24576:O9m+6gpj5uvicCIiSkEs2gWRykuIgxVThEMK1PUDaO/R4wbbz+rA8G0vBVaFHR1Q:bGpj5uv9uIg3TaM6UpR3bbxJ71o8+

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks