Overview

overview

10

Static

static

1

#Pa$$CŌ�...!#.zip

windows10-ltsc 2021-x64

4

#P@S$wǾr�...p@!.7z

windows10-ltsc 2021-x64

4

!Premium--...up.exe

windows10-ltsc 2021-x64

10

Pa$S_-_8166.txt

windows10-ltsc 2021-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    #Pa$$CŌ𝔻e--8166__OpeN-Se-tUp@!#.zip

  • Size

    2.5MB

  • Sample

    250127-3kgfkayrgv

  • MD5

    6c0ca3b86a0c9dadd1c781f06b8454d6

  • SHA1

    f9fc36d10f574e3cd53a779b826ae4fe58b67b55

  • SHA256

    2769011676e1338034dcee815050efd37055966968ed7e1114a5f85be9bb6b62

  • SHA512

    347dd172e556e118260be30d8da9daca1f637a2c033320ba3b21be4b15aed811b99499bec7364cdf63e7937450312b9c226088175d09cfa624e05715383b7a17

  • SSDEEP

    12288:K6lXoAow3jU6PA0CRAZOzIl67TC3/A4j18y0wDhjx9kuagdPLmVEc9PFityFdc:ff33AyaI07+vjOy0w0gxGEcnitAc

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

https://swingybeattyz.sbs/api

Targets

    • Target

      #Pa$$CŌ𝔻e--8166__OpeN-Se-tUp@!#.zip

    • Size

      2.5MB

    • MD5

      6c0ca3b86a0c9dadd1c781f06b8454d6

    • SHA1

      f9fc36d10f574e3cd53a779b826ae4fe58b67b55

    • SHA256

      2769011676e1338034dcee815050efd37055966968ed7e1114a5f85be9bb6b62

    • SHA512

      347dd172e556e118260be30d8da9daca1f637a2c033320ba3b21be4b15aed811b99499bec7364cdf63e7937450312b9c226088175d09cfa624e05715383b7a17

    • SSDEEP

      12288:K6lXoAow3jU6PA0CRAZOzIl67TC3/A4j18y0wDhjx9kuagdPLmVEc9PFityFdc:ff33AyaI07+vjOy0w0gxGEcnitAc

    Score
    4/10
    discovery
    behavioral1

    • Target

      #P@S$wǾr𝓓__8166--Se-tUp@!.7z

    • Size

      643KB

    • MD5

      614f3a069620550c52857d50d04ed61c

    • SHA1

      879e74a84116e8afa07eadd382a2fa9d0cb9d49f

    • SHA256

      2e590d06a6bfe546455c2683afaf8d732dafa35c19dca2e51ca16024dbbe4b53

    • SHA512

      5bed64a68af81c41e9661d222f2b7212c8c25e4f96bf1f47d1a859993b3f68947b3c1b0f919a6df6c011bf28107dbe336c3ed593c0c0659aed7fdd159bf8abc8

    • SSDEEP

      12288:U6lXoAow3jU6PA0CRAZOzIl67TC3/A4j18y0wDhjx9kuagdPLmVEc9PFityFdR:Bf33AyaI07+vjOy0w0gxGEcnitAR

    Score
    4/10
    discovery
    behavioral2

    • Target

      !Premium--SatUp/setup.exe

    • Size

      71.7MB

    • MD5

      6da280fb9c2da7913e9c801b4de02f47

    • SHA1

      119298d4791194344e819d512638165a1517525b

    • SHA256

      8e478472737ee141955d91e3c15c370ed92914eba06b21ad84fe056026b69e99

    • SHA512

      78f66c181d572bd0a12b748770578bb85b8c447c3fbc686d19b61bc226f185f512b6a3176fd04f147a5531fa281804b5fb393c3d30d0e6cd4a131d1c2ab5fe86

    • SSDEEP

      12288:FRjEparvru3GWf+6vk7A5oI+3qYc40Y+wyNdl3sT9xvgihDqOn0JroELnF0soYqn:/Eaq3GWZvkWoQk0y

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma
    behavioral3

    • Target

      Pa$S_-_8166.txt

    • Size

      602.4MB

    • MD5

      60e0bb87abb2f8474857e3beeef30701

    • SHA1

      81c8641d5dfae65d7db90e5c434c36ba07d0b6ee

    • SHA256

      fe4f88538c89bc7cb042865a1759479be19b53205d9141f82d7adc3cef4a0277

    • SHA512

      c33e7adfb3a27f209167ede7292fcacad19ffc860232f8f8c17cd8b31fa94f1c32ad83482e15b7eb97f06614b707b532e92efcd55fa067299e1a703250ef46ac

    • SSDEEP

      48:mnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnn8:z

    Score
    1/10
    behavioral4

MITRE ATT&CK Enterprise v15

Tasks