General
-
Target
60ec2c168365bcd32ac7a7ae6ad0d1fea4cc948590ac0ed7c621599f256964a0
-
Size
290KB
-
Sample
240704-2jwy7avhle
-
MD5
2f694c5080f96479f2bea3f4d07200f1
-
SHA1
e67d58f0003e4506711c76e82915ba4f7d53b893
-
SHA256
60ec2c168365bcd32ac7a7ae6ad0d1fea4cc948590ac0ed7c621599f256964a0
-
SHA512
5bd183c62585d02aa98909b748dc9395fd1f942a5f3a54319f4a0a404a26bd595b4cd14da3111abfc82f2067170d771e0e85293340cc6fe35878501796a76d8e
-
SSDEEP
6144:KPLVLEybu2Ts3URzcx4ahao3vewTbSo2BOwCk9ZC7:KP5LLbxsEuxj/3veUbZ2BOw1
Static task
static1
Behavioral task
behavioral1
Sample
60ec2c168365bcd32ac7a7ae6ad0d1fea4cc948590ac0ed7c621599f256964a0.exe
Resource
win7-20240508-en
Malware Config
Extracted
lumma
https://stationacutwo.shop/api
Targets
-
-
Target
60ec2c168365bcd32ac7a7ae6ad0d1fea4cc948590ac0ed7c621599f256964a0
-
Size
290KB
-
MD5
2f694c5080f96479f2bea3f4d07200f1
-
SHA1
e67d58f0003e4506711c76e82915ba4f7d53b893
-
SHA256
60ec2c168365bcd32ac7a7ae6ad0d1fea4cc948590ac0ed7c621599f256964a0
-
SHA512
5bd183c62585d02aa98909b748dc9395fd1f942a5f3a54319f4a0a404a26bd595b4cd14da3111abfc82f2067170d771e0e85293340cc6fe35878501796a76d8e
-
SSDEEP
6144:KPLVLEybu2Ts3URzcx4ahao3vewTbSo2BOwCk9ZC7:KP5LLbxsEuxj/3veUbZ2BOw1
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-