General
-
Target
yFQFu2M.exe
-
Size
399KB
-
Sample
250122-q6qj5syrbv
-
MD5
c4d092484f2d29e4a11e3bbceba77240
-
SHA1
79cfc2e6106a6245034fda4e081d8e9e94e1b46f
-
SHA256
0d90b2123d529cf5d605cc152e1baae0e65788b6098427ab42149a76e88263f3
-
SHA512
cff1af2afaad224e624e94fe402e88559d30e1ce97a5d13690150894844c3d258a22c8f40ed95162e19f38f0d6412c2369bcadb39605623440b1e870401aec76
-
SSDEEP
12288:jQXNUkhZcgSbANJtfecc7HAl2DzZJ8y0DcJ:j5kh3+8JnQAoDtGxYJ
Static task
static1
Behavioral task
behavioral1
Sample
yFQFu2M.exe
Resource
win7-20241023-en
Malware Config
Extracted
lumma
https://supplyedtwoz.click/api
https://impolitewearr.biz/api
https://toppyneedus.biz/api
https://lightdeerysua.biz/api
https://suggestyuoz.biz/api
https://hoursuhouy.biz/api
https://mixedrecipew.biz/api
https://affordtempyo.biz/api
https://pleasedcfrown.biz/api
Targets
-
-
Target
yFQFu2M.exe
-
Size
399KB
-
MD5
c4d092484f2d29e4a11e3bbceba77240
-
SHA1
79cfc2e6106a6245034fda4e081d8e9e94e1b46f
-
SHA256
0d90b2123d529cf5d605cc152e1baae0e65788b6098427ab42149a76e88263f3
-
SHA512
cff1af2afaad224e624e94fe402e88559d30e1ce97a5d13690150894844c3d258a22c8f40ed95162e19f38f0d6412c2369bcadb39605623440b1e870401aec76
-
SSDEEP
12288:jQXNUkhZcgSbANJtfecc7HAl2DzZJ8y0DcJ:j5kh3+8JnQAoDtGxYJ
-
Lumma family
-
Suspicious use of SetThreadContext
-