lumma | 16fcbcc1418657e83e30f6c4d8e9c9925b11444feb8bbf6648eb4913cd03d60e | Triage

Submit
Reports

Overview

overview

Static

static

1

NewSetup.exe

windows10-1703-x64

Sharing

General

Target

NewSetup.exe
Size

4.1MB
Sample

240628-pseeaazckf
MD5

54b924d299ee549a0d7e8ee515a7acac
SHA1

4ac7584339fea57e62bbbd5f1d48a3307ef5760c
SHA256

16fcbcc1418657e83e30f6c4d8e9c9925b11444feb8bbf6648eb4913cd03d60e
SHA512

bc6c163c06ccef5efeb8299fe187ff2bac87664d293cf33e8c9ced5f54cfe33e088e8918b6ad49825cfc09cb8e6956341b454425b18b2b64e137c8534e6be310
SSDEEP

98304:yFYjfvTXyCfwakE4HCsdv9q5bFleVZm3U:yFYTLXyCfHkE4VvMD4VD

Score

10^/10

Static task

static1

Behavioral task

behavioral1

Sample

NewSetup.exe

Resource

win10-20240404-en

windows10-1703-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

lumma

C2

https://harmfullyelobardek.shop/api

Targets

- Target
  
  NewSetup.exe
- Size
  
  4.1MB
- MD5
  
  54b924d299ee549a0d7e8ee515a7acac
- SHA1
  
  4ac7584339fea57e62bbbd5f1d48a3307ef5760c
- SHA256
  
  16fcbcc1418657e83e30f6c4d8e9c9925b11444feb8bbf6648eb4913cd03d60e
- SHA512
  
  bc6c163c06ccef5efeb8299fe187ff2bac87664d293cf33e8c9ced5f54cfe33e088e8918b6ad49825cfc09cb8e6956341b454425b18b2b64e137c8534e6be310
- SSDEEP
  
  98304:yFYjfvTXyCfwakE4HCsdv9q5bFleVZm3U:yFYTLXyCfHkE4VvMD4VD
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy