General
-
Target
GalaxySwapper v2.0.3.zip
-
Size
55.6MB
-
Sample
240701-xelv7sxcqp
-
MD5
5ddb6eecfb4b12199bca6c948916648b
-
SHA1
0eafa4b4e3a65c19bc1fe70a502b86263eb2bfb9
-
SHA256
5f090414e7879bf04a172e08266ae540ce5ce2d5332ae99df604b97b5122d4fd
-
SHA512
e3429fab9c252a31923bdbdf9137fb295e7c7a397a30bf01b8706bfe810d59179a8896958e8c806fec7a0867182adffaaa794ea49731f1c663e7f5ec55f8abb5
-
SSDEEP
1572864:jwbfCpM+GHFqegwAv4CinqSnkiGiOLT5oxMmcRlmk18eyi:eLdHkj3inVnk1LTRjmJPi
Malware Config
Extracted
lumma
https://potterryisiw.shop/api
https://foodypannyjsud.shop/api
https://contintnetksows.shop/api
https://reinforcedirectorywd.shop/api
Targets
-
-
Target
GalaxySwapper v2.0.3/AcXtrnal.dll
-
Size
550KB
-
MD5
6e353c4c50e19aa7fa32750caaadfdc8
-
SHA1
f769957ef270dea7eebe3343681823d8bf39549e
-
SHA256
fcf336915cb31035f31318a82b528ac29b46286d149ac20af48106b127f281a9
-
SHA512
e10d918364c1c8108f0be51c523852c0ab270804071514406698dfadc733ff002c8e87d35116c48a8fdb02a619e7b84ccc7c81a5f1b6ce031d54a9aef9ae4a8a
-
SSDEEP
12288:1dLOyN8W4TnHLaVmrbSOkKc+Ae63Udfun:/LOS4TnHRWOkKcX13UdWn
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/Galaxy Swapper v2.0.3.exe
-
Size
953KB
-
MD5
3ec47bf3670f6260e1bb7aded9cce989
-
SHA1
7d90a117705a7d863a6edbb41415fcbb6f75a394
-
SHA256
5d7e20eb7734242f28f5edb1583bb45db3d490bbc38c05ee55ccf370e02115bc
-
SHA512
e8e9588ddb273c37a579f7d5d38d294f1280e779ad8fa88ed2f81ffec3345dfb1204f83b6e39dff85cb6d6de04f6fb7e4cff421704b6d43efd8ff9887a3534f5
-
SSDEEP
24576:aCZIdQCtwqBLRON6NUd73+MrOpR00mmZU0sLQXjt:GwqBLRONuHkOpR00FGRLQ5
Score10/10-
Lumma Stealer
An infostealer written in C++ first seen in August 2022.
-
Suspicious use of SetThreadContext
-
-
-
Target
GalaxySwapper v2.0.3/acproxy.dll
-
Size
2.5MB
-
MD5
153b33a55d6114da5528b236a17cfae9
-
SHA1
797f97936282847930455b9deadd345f57753a6c
-
SHA256
80ec02d5362f5972558bcf9fde4309eb7f0726e2640d57cfd4ba5b3f9043ca31
-
SHA512
2c28d06fe9a0e44a8fba78df5f2e2e066da8f54e18c6a1589a93456e3382b2224c8ba0bcc799b03b936827285eb9c213f954c30ca1fb35f084f72e48af070f6b
-
SSDEEP
49152:8f47ONXYlefNUhCkVicqmmu5+Vku6HO7jXsH+STnqVrcn0S6e5YmY1eH:k1I164ceH
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/alibabacloud-oss-cpp-sdk.dll
-
Size
1.6MB
-
MD5
2698f138e8c4d573bb0daedc47acd123
-
SHA1
ec86054e1b8587787de6ffe4bcf021be87c42ad3
-
SHA256
2ee24618c12271b7c9c18df5f2beddf02fd93ee7457707e0a6a54d8d8e88aaa2
-
SHA512
0f1d2deed598c5a8c42cadac654b971384f28fd1dcb031057a385b3335bba3b223ef09e7b181552f1c2e1706b8ecbef221c657ca012db74b1fb94d92fb0bd755
-
SSDEEP
24576:tN8fuPKTkHbQiPG0mtubsO6cglG+wUIWMeclwSAQ6dk6x:tN8fuST5cVec+H
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/com/COMSupport.dll
-
Size
38KB
-
MD5
e8fb6c3324cb66e60900b813b364a5de
-
SHA1
8019d3cfb0667646b5aa5a38eaf9a9fdc194c4eb
-
SHA256
742176460afa2a4ed3642142dfa954e7f53668009a4973459888d5edf9ed1bdb
-
SHA512
68d66bafb16e1f668223baadd61f53fe1c87ebcf2c6752554c026d880f93f34c0200b83343a73318a93d93f4e05a7c9ed5ad46acbf72f870de337d1a74c18b44
-
SSDEEP
768:hsn/+b3jGP7CYi7FfisWWFPxWE6ngYi7FfistPxWEaO:hucjqC70f2Pxh70qPxd
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/com/ColorManagment.dll
-
Size
97KB
-
MD5
eff6f115f31539581c175522a578e799
-
SHA1
16c8e3b171021211fc52d1ad018ac809247dab1d
-
SHA256
152cbd8148b160b0ed4baa2ed7ce10b680f45f7e3159d133cd0427575da42251
-
SHA512
0068dc71612fadd30c459a350f2f3a44f7cdd12c64f9ff3d759828f322794a57ed16442ed87b8fb572e090a9e0f926c4347235f35181136e2900036bdf57a7fb
-
SSDEEP
3072:r7y7E+qBtlMG4F7TbUjJY8399V4Vb4OQqxQQcxi:r7m2tlybUN934VbSu7
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/com/cpr.dll
-
Size
159KB
-
MD5
7a006dc458d9c9bc4666a0f03d354d3d
-
SHA1
b5a716748ccdc13be07ce8dd249647046273715f
-
SHA256
91e513aed4cefc9cbc8ccd014310e75d5c098c958a23b1ac0780b07170f91f1d
-
SHA512
bd962c90a7d1e928ba8beb974441906aa7966f83fa2a1daf1d72608509df1722573e055c7f1739bf809106670fe05feda1c377c57332cc3d1ff42a6a1fc01666
-
SSDEEP
1536:YiKmyTp0GcE7+RQX868xxUJZCS21b+i67DoK3UuksYHcY3UFY7TPx17PPxdg:Yz5d0vE7+R3dCq1B6D3kXHcY3bfx1Dxy
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/cpr.dll
-
Size
159KB
-
MD5
7a006dc458d9c9bc4666a0f03d354d3d
-
SHA1
b5a716748ccdc13be07ce8dd249647046273715f
-
SHA256
91e513aed4cefc9cbc8ccd014310e75d5c098c958a23b1ac0780b07170f91f1d
-
SHA512
bd962c90a7d1e928ba8beb974441906aa7966f83fa2a1daf1d72608509df1722573e055c7f1739bf809106670fe05feda1c377c57332cc3d1ff42a6a1fc01666
-
SSDEEP
1536:YiKmyTp0GcE7+RQX868xxUJZCS21b+i67DoK3UuksYHcY3UFY7TPx17PPxdg:Yz5d0vE7+R3dCq1B6D3kXHcY3bfx1Dxy
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/data/DecoderMgr.dll
-
Size
43KB
-
MD5
eb25ee1f5c3332d3bbd16fe887cc8957
-
SHA1
d476bf1397cb9b71851f4a88ac98736f13c5b87c
-
SHA256
406ecbc8e40c7398b6b7d8e78f4ca30b11710b8bb7775407ede6f12aa69ab4f1
-
SHA512
d51014c218cf2f011a9751cdce42416eea7e699bee2cd80890622e451702ea2717c612b755494894ed959058dfd2b39682b919413eea1c77296a42e9a6e76c09
-
SSDEEP
768:CmPesi69wzkcz8ENtYi7FfisnPxWEbb9Yi7FfishPxWEOs:Xesi6Oz3z8ENt70yPx9970cPxf
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/data/DemuxMgr.dll
-
Size
57KB
-
MD5
ce2f4a0c39f2ffc2bbd544885ab59175
-
SHA1
c5ffd98aa5b0978efaaa0da9c6884ab562093f94
-
SHA256
fcf52e82c1c7aaa94e87e968731ab3cc4cb7390e37fa06546b92ae82ef5ce305
-
SHA512
ef58da9476b0eb6e9c52bbae18f050a8bcd089b6ca256133873797dfb41ff5dd241dfa1bf70cb496a717f3a28ec9bde7fef5ba057d7477fed8a6c49edf939b19
-
SSDEEP
768:o8DtaP0rzOD1tQo2IMXSNHlHDxtxLtOAXtF8Yi7FfisHKvPxWElSYi7FfisePxWy:o/MTo2IvbVtOAXtF870BvPx270nPx
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/data/dav2mp4.dll
-
Size
33KB
-
MD5
46dfd88dd581c240556e8f41a629d850
-
SHA1
135f034dd7e95b8ea54d5ef8dd42199e253dc25f
-
SHA256
1e566dfb237f01bb9d1a04b8826889d6a5e69171e9ea436b490d10832bbf1209
-
SHA512
e632a5fc5743aca282a681b11ba37757c43b6898cec4ebbeeeb44b3815f6aaf08bf10ff0a4e3f86fdf54d1857d7d03809e6718d2f92fd5df25602624e9cf1985
-
SSDEEP
768:jfDNmWf2Hfzq+Yi7FfisLPxWEu3Yi7FfisGIPxWERw:jfx2rq+70+Pxm70yPx8
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/lekeystore.jks
-
Size
38KB
-
MD5
e8fb6c3324cb66e60900b813b364a5de
-
SHA1
8019d3cfb0667646b5aa5a38eaf9a9fdc194c4eb
-
SHA256
742176460afa2a4ed3642142dfa954e7f53668009a4973459888d5edf9ed1bdb
-
SHA512
68d66bafb16e1f668223baadd61f53fe1c87ebcf2c6752554c026d880f93f34c0200b83343a73318a93d93f4e05a7c9ed5ad46acbf72f870de337d1a74c18b44
-
SSDEEP
768:hsn/+b3jGP7CYi7FfisWWFPxWE6ngYi7FfistPxWEaO:hucjqC70f2Pxh70qPxd
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/net/FCore.dll
-
Size
1.0MB
-
MD5
08796fb8d3bc55994ff2e6c4d209910f
-
SHA1
888f56fce62424aaf63c0f1e648cc53cd693f0d1
-
SHA256
ddfe9847c034560a081308b15667d918752482e9d86c1a1992e4bb6f4369ffda
-
SHA512
c1eba080b300bd2d60fe361c55b4b0da8b48370b0dcd4a3c4c59db9a355f0bcb45096bd84899a4ceba979dbbbf118f15c246f42f33b3def1131a921a41fb767d
-
SSDEEP
12288:8Bw6rqmV3bwrzcT/+ZUWwa/Vehbv5E59k9b:ATqmV8ri/6z/kbdb
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/net/FFAdvancedColorAdjust.dll
-
Size
882KB
-
MD5
f31fb6d2488f9b4c15891167909410ec
-
SHA1
cd68d8d55ef18ab60a7a10d441b4623c6d92a9b7
-
SHA256
aaebdf1476de441e32fba84d6a0d2b3294d832dce9a64884865b78725c2854c7
-
SHA512
a28dab7dc293e6dad276f777f0f96748c0a6dd1cd964097c1f80be0e9412ec2cabd37279365c123deb363bfbeab2f11d9a10ae2e0b30652bdc49eed016268378
-
SSDEEP
12288:NPBWt3ZJdEli6infijCDq7XVLbMrYPWE59k92:NPBWt3ZJdYixfiGoM52
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/net/FFCore.dll
-
Size
1.4MB
-
MD5
f8d599c7620a981623302bdbef6be1e8
-
SHA1
04828c123330aaa5df0bb9c58035db9286bc7085
-
SHA256
9695408ffaa0eecf13baf9bf98e67349ba3404130e331ddc3560a73e7460c125
-
SHA512
f15381698052f4db63592dbe48c24fc7545cbd18f1aedf315db39c964b59582882b8cc72548b4974a87d2e0a12494b347c939b1589a92372a84b1458609bdb97
-
SSDEEP
24576:RMAxgXfIVYzDjBjDGVSd2H+0IdxFPWFc6Yp:SAxgPIVY/FGVG2H+0InFPWBYp
Score1/10 -
-
-
Target
GalaxySwapper v2.0.3/net/FFEffectWidgets.dll
-
Size
4.2MB
-
MD5
461ef166ce06f0e2d18761cba484f2c6
-
SHA1
f5e4ac3eaacce6043051391c1faf7bb6f79b87c0
-
SHA256
d5033b388793560adf3c39b897f1d25753aad0decbe8bb8e69b8af73f27c5c86
-
SHA512
889ee74b2ad36aaa36eddf181f320d4c06d49311a733d356e48d0574c1e052112ac5019b7732a81e1627796e9456384584ed1bbc2c857789c5ab65ba795390d4
-
SSDEEP
49152:If6V0cmBphwShAfaHhs4eF5rY4YpLdEaos91KTIeVyvvq21BGdN:IgSAl1nTImyvvq21gdN
Score1/10 -