Overview

overview

10

Static

static

1

URLScan

urlscan

1

https://download2284...

windows10-1703-x64

10

https://download2284...

windows10-2004-x64

1

https://download2284...

windows11-21h2-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://download2284.mediafire.com/3urgmkzxf7ugPC4H-HmhqNmT85T7oZAMH_JoD8-r0gQgGq_618acYj0HBjT5Nxq7ymfqYM0_zBbA-mc2UU8xQ5Z1uLYuk6pZSUL1UguyiWbSjwXyHiw0AorWod5aT1EKVTvQ-QN8VKB9u2NvfnyvqDKkmByZlPaUugJJtkQMK99x9Vor/i9lpzwjkmny3z3g/GlobalCheats.rar

  • Sample

    240624-sjw5hsycra

Score
10/10
lummastealer

Malware Config

Extracted

Family

lumma

C2

https://archidoveryusk.shop/api

https://publicitycharetew.shop/api

https://computerexcudesp.shop/api

https://leafcalfconflcitw.shop/api

https://injurypiggyoewirog.shop/api

https://bargainnygroandjwk.shop/api

https://disappointcredisotw.shop/api

https://doughtdrillyksow.shop/api

https://facilitycoursedw.shop/api

Targets

    • Target

      https://download2284.mediafire.com/3urgmkzxf7ugPC4H-HmhqNmT85T7oZAMH_JoD8-r0gQgGq_618acYj0HBjT5Nxq7ymfqYM0_zBbA-mc2UU8xQ5Z1uLYuk6pZSUL1UguyiWbSjwXyHiw0AorWod5aT1EKVTvQ-QN8VKB9u2NvfnyvqDKkmByZlPaUugJJtkQMK99x9Vor/i9lpzwjkmny3z3g/GlobalCheats.rar

    Score
    10/10
    lummastealer

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

4
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

3
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks