← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Warning Against Infostealer Infections Upon Executing Legitimate EXE Files (DLL Hijacking) - ASEC BLOG
WHITE CyberHunter_NL 2023-11-01 Modified: 2023-12-01
82
IOCs
HIGH VOLUME
The LummaC2 Stealer malware is being distributed through the distribution of malware disguised as crackers and keygens for commercial software, according to the European Security Agency (Esa)..
dllsexe filefilelummac2xyz hxxpxyzc2conf hxxpinfostealerdll hijackingdll entrypointlummac2 malwareauguststeam
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
LummaC2
Indicators of Compromise (13 / 82 total)
All URL FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA256 045bd2e3ca743c96c9d2a2141e5eca75c0934ff14dad9ad097d398918036f864 SHA256 of 696e066c4f3d52d5766e724afbdb3594 2023-11-01
FileHash-SHA256 1f64f01063b26bf05d4b076d54816e54dacd08b7fd6e5bc9cc5d11a548ff2215 SHA256 of a13bfe522abc659704965388ad4581ee 2023-11-01
FileHash-SHA256 1fcd04fe1a3d519c7d585216b414cd947d16997d77d81a2892821f588c630937 SHA256 of e634616d3b445fc1cd55ee79cf5326ea 2023-11-01
FileHash-SHA256 3339c25fe3480f0d7fa93cfe7ab4acd7dcb8dc054250935867b967aa50edbf2f SHA256 of 50a40274ffe963e1f214f9f19746e29e 2023-11-01
FileHash-SHA256 448402c129a721812fa1c5f279f5ca906b9c8bbca652a91655d144d20ce5e6b4 SHA256 of c8a2de7077f97d4bce1a44317b49ef41 2023-11-01
FileHash-SHA256 89c61b5b70d806f603c431365f11f5faaa06f4ce34fc8006fb7ed026a2efdde4 SHA256 of 1377ef7319507a10d135d5128ac9fbc8 2023-11-01
FileHash-SHA256 8dc4d5deef19fb4da195c270819a6ee283b67408fc9ee187216a0ce80ee61bab SHA256 of 8f0717916432e1e4f3313c8ebde55210 2023-11-01
FileHash-SHA256 ac7a321a7b00b4adb5863b9a7e91e69afe9ce1953317234a2bd1bee97de744da SHA256 of 23ba27d352305f29d201ac5e43fc4583 2023-11-01
FileHash-SHA256 b5f9377bd27fcf48fb3d81d0196021681739f42a198e8340c27d55192d4bd3ac SHA256 of 48c9a0c76b44a5f2729c876085adba4e 2023-11-01
FileHash-SHA256 b874e5abdd7c008d47560fda4e84db893ac63c18c3a5a450d25f4e62ed8e8d8c SHA256 of 88691dbfa349db78f96e3278d1afc943 2023-11-01
FileHash-SHA256 cf801023465679ec34084bdb1adb9f54b2fc3130925a4b8fdc10b11639b4a7cd SHA256 of a860b368e9e2aa5cb4e7cb73607d18b1 2023-11-01
FileHash-SHA256 e631bf67c349ce3afc7d5960b0247af9466292bc314ff393dee0716f3a50fd5f SHA256 of ba99b11a84a19051eca441320af22f4e 2023-11-01
FileHash-SHA256 f2b4ca304f3d9d3305ae595e19906c545601f8c9e215a9b598036e89155daf85 SHA256 of 64e3c6d6a396836e3c57b81e4c7c8f3b 2023-11-01
References (1)
↗ https://asec.ahnlab.com/en/58319/