lumma | cb74efa5edabffa956e33282c67330c1926b8159486ad50f072d82fff34fe4f6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

5e63ce4976...60.exe

windows7-x64

5e63ce4976...60.exe

windows10-2004-x64

1

Sharing

General

Target

5e63ce4976bca06c996c2aaaf3559b60.exe
Size

404KB
Sample

240106-memsdseha5
MD5

5e63ce4976bca06c996c2aaaf3559b60
SHA1

23e42b447054455c3adca5e529ab614087e60ae1
SHA256

cb74efa5edabffa956e33282c67330c1926b8159486ad50f072d82fff34fe4f6
SHA512

eb3bd8782d03df6321c2682987c520b2fb9338c1fd4abbeaac1a355d971dafeaf6964e184cfb38ab3fa2a32d586012d62b952e806a6428fcc6669edb449f6c40
SSDEEP

6144:1Cq3j2XRXSZpdeX1cNwPLvoqg0R2VhPefm0ToKvILP96q/EymLj0GKHUmTaWFW:QIjCXSzS1c2obY7BIz9JETLwGchM

Score

10^/10

lumma evasion stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5e63ce4976bca06c996c2aaaf3559b60.exe

Resource

win7-20231215-en

lumma evasion stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

5e63ce4976bca06c996c2aaaf3559b60.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  5e63ce4976bca06c996c2aaaf3559b60.exe
- Size
  
  404KB
- MD5
  
  5e63ce4976bca06c996c2aaaf3559b60
- SHA1
  
  23e42b447054455c3adca5e529ab614087e60ae1
- SHA256
  
  cb74efa5edabffa956e33282c67330c1926b8159486ad50f072d82fff34fe4f6
- SHA512
  
  eb3bd8782d03df6321c2682987c520b2fb9338c1fd4abbeaac1a355d971dafeaf6964e184cfb38ab3fa2a32d586012d62b952e806a6428fcc6669edb449f6c40
- SSDEEP
  
  6144:1Cq3j2XRXSZpdeX1cNwPLvoqg0R2VhPefm0ToKvILP96q/EymLj0GKHUmTaWFW:QIjCXSzS1c2obY7BIz9JETLwGchM
Score

10^/10

lumma evasion stealer
- Detect Lumma Stealer payload V4
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Modifies security service
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummaevasionstealer

behavioral2

© 2018-2025

Terms | Privacy