Efficient Distribution of LummaC2 Infostealer via Legitimate Programs
Tags
attack-pattern: Data Credentials - T1589.001 Data Encrypted For Impact - T1471 Data Encrypted For Impact - T1486 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Standard Application Layer Protocol - T1071 Credential Dumping - T1003
Show in Graph
Common Information
Type Value
UUID c52c48df-f3bb-4450-ba01-732c799ecf12
Fingerprint c57d1b7022cbab05
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 18, 2024, 11:27 a.m.
Added to db Nov. 18, 2024, 1:26 p.m.
Last updated Nov. 20, 2024, 4:32 p.m.
Headline Efficient Distribution of LummaC2 Infostealer via Legitimate Programs
Title Efficient Distribution of LummaC2 Infostealer via Legitimate Programs
Detected Hints/Tags/Attributes 24/1/20
Source URLs
Redirection Url
Details Source https://medium.com/@harboot/efficient-distribution-of-lummac2-infostealer-via-legitimate-programs-8b14a3bbaa7b?source=rss------infosec-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 168 Infosec on Medium https://medium.com/feed/tag/infosec 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 2 
authorisev.site
Details Domain 2 
bakedstusteeb.shop
Details Domain 2 
bringlanejk.site
Details Domain 2 
conceszustyb.shop
Details Domain 2 
contemteny.site
Details Domain 4 
www.hendryadrian.com
Details md5 2 
2871fb22369890c609fdb067db060c42
Details md5 2 
3079439be9235f321baab3ae204a7b8b
Details md5 2 
4f8ac16139c29a03686004904cf9ce76
Details md5 2 
5845951ae9a216178404ec2e66d1872c
Details md5 2 
59d5751d980fae8a556e53a4282c69ed
Details MITRE ATT&CK Techniques 294 
T1003
Details MITRE ATT&CK Techniques 477 
T1486
Details MITRE ATT&CK Techniques 449 
T1071
Details Url 2 
https://authorisev.site/api
Details Url 2 
https://bakedstusteeb.shop/api
Details Url 2 
https://bringlanejk.site/api
Details Url 2 
https://conceszustyb.shop/api
Details Url 2 
https://contemteny.site/api
Details Url 1 
https://www.hendryadrian.com/efficient-distribution-of-lummac2-infostealer-via-legitimate-programs