General
-
Target
github.software.1.2.4.exe
-
Size
512KB
-
Sample
240628-vhqbpaxblc
-
MD5
40e2eec44440b05252d597d1f3a7c322
-
SHA1
9a5ee75fdba536d3e954e70c58597e96a6921658
-
SHA256
cb8b98537cfd5101d1ff182c696cb16fc6478822f6c7deced4efc08b6b02114a
-
SHA512
325c54743904c7f183d46b7fd16686f0594bd41f85954b8237fcd455542b981804accc65decc4535b0b4122d6be8c41d2470b9f0bc991bf8a4beda14800506d3
-
SSDEEP
12288:YBzlsxxxMCQMQA1cR0HB7Ndtjpw2zw1ybLnOMA:Y5iDxWIciHB7jxzw1ybLn
Malware Config
Extracted
lumma
https://bitchsafettyudjwu.shop/api
https://potterryisiw.shop/api
https://foodypannyjsud.shop/api
https://contintnetksows.shop/api
https://reinforcedirectorywd.shop/api
Targets
-
-
Target
github.software.1.2.4.exe
-
Size
512KB
-
MD5
40e2eec44440b05252d597d1f3a7c322
-
SHA1
9a5ee75fdba536d3e954e70c58597e96a6921658
-
SHA256
cb8b98537cfd5101d1ff182c696cb16fc6478822f6c7deced4efc08b6b02114a
-
SHA512
325c54743904c7f183d46b7fd16686f0594bd41f85954b8237fcd455542b981804accc65decc4535b0b4122d6be8c41d2470b9f0bc991bf8a4beda14800506d3
-
SSDEEP
12288:YBzlsxxxMCQMQA1cR0HB7Ndtjpw2zw1ybLnOMA:Y5iDxWIciHB7jxzw1ybLn
Score10/10-
Lumma Stealer
An infostealer written in C++ first seen in August 2022.
-
Suspicious use of SetThreadContext
-