lumma | 71345103a31733f2ba1b7417917e6cf1e108c003aa6688b387981174fb380d93 | Triage

Submit
Reports

Overview

overview

Static

static

3

github.sof....4.exe

windows7-x64

3

github.sof....4.exe

windows10-2004-x64

Sharing

General

Target

github.software.1.2.4.7z
Size

2.2MB
Sample

240628-tyl4jazarp
MD5

68dd8a9d1c8f94c6133f6c154f0145e6
SHA1

5d6c0691fd9d2285a02638e5345df7a11c399a9d
SHA256

71345103a31733f2ba1b7417917e6cf1e108c003aa6688b387981174fb380d93
SHA512

b0549f25668f5037ff2162714af85c92b88c9acb5d151d4cecc4371c2fe57c5eaa9484392c10a17b1c0e2755af7eafde5ef4950d0592c5970ec7e2207a91fb13
SSDEEP

49152:TeYcFc5I4LLJv6MGh/+zSi3AnyPGFJxJ5o++aZMQNPSk:TeXFc2eJiMC693RuFJXvdxSk

Score

10^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

github.software.1.2.4.exe

Resource

win7-20231129-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

github.software.1.2.4.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

lumma

C2

https://closedjuruwk.shop/api

https://potterryisiw.shop/api

https://foodypannyjsud.shop/api

https://contintnetksows.shop/api

https://reinforcedirectorywd.shop/api

Targets

- Target
  
  github.software.1.2.4.exe
- Size
  
  520KB
- MD5
  
  b285aefc199a1d8630b2a325829c6504
- SHA1
  
  4326e4e97668bee90d7258250157d74ede45426a
- SHA256
  
  e28ee1216fcec55364effa71193510b42fe4bf48b2bf161a5deac24099a10ba1
- SHA512
  
  895b83ee3ab6071b3417010c9aab6d1819ecca41ad3613353742d6b1d9133864c7e2f6ed1ff1fa898786a17bfd9f68bcaa756a3a8534e53d044621c97b767cc4
- SSDEEP
  
  12288:TPcZuXlfx3V3dDDGP7ZQyS51Gd/9TEw9WyJ+vgSR5nyGj:T001fXBiTZa51GzTEUWyQdR
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy