lumma | f07bf397abd8b6bed01b838c3f332319c997f810ee5ec5087e761f1ccc39641a

Sharing

Copy URL

Twitter E-mail

General

Target

303bf634d39565a251e352c1086c084f.bin
Size

9.1MB
Sample

240114-bmqcpshdbm
MD5

303bf634d39565a251e352c1086c084f
SHA1

ebd4b24e4657ec556d7599501ce95338d999cbc9
SHA256

f07bf397abd8b6bed01b838c3f332319c997f810ee5ec5087e761f1ccc39641a
SHA512

5276831361ea21b4f53eda4749a60dd47c4a0cfbf06d7cb9286dd41d979fef6cbd229b2d08e79cd1f52a4f8508ae157a262694f68c04632ca72742156f4c7edd
SSDEEP

196608:E4z+50GHgOyJK3MivnPgo+kSbXrM8I5+MB+OZdg89:EGU0GAY/ToTATnRZdv

Score

10^/10

lumma stealer

Malware Config

Extracted

Family

lumma

https://goddirtybrilliancece.fun/api

Targets

- Target
  
  Libs/Extreme.Net.dll
- Size
  
  121KB
- MD5
  
  f79f0e3a0361cac000e2d3553753cd68
- SHA1
  
  4314bcef76fddc9379a8f3a266b37d685d0adb79
- SHA256
  
  8a6518ab7419fbec3ac9875baa3afb410ad1398c7aa622a09cd9084ec6cadfcd
- SHA512
  
  c77516e7f5540ecd13fa5d8cecfce34629acecd9b5a445f5f48902c9e823328fa9a6694ecaa39f5b6053de61c2b850c2d87df25357548afaad6ec37eb3e5e355
- SSDEEP
  
  3072:bdoECIgjBibgp2tBqL0Y++ruXqMG4ih3lbpMqc:bdoECIgUrG
Score

1^/10
behavioral1 behavioral2
- Target
  
  Libs/Injecting.dll
- Size
  
  507KB
- MD5
  
  da2b07289f9853d57b19a5299e0e763f
- SHA1
  
  9f38aa225429081b1a25100177b05dee8cd0a02a
- SHA256
  
  1d65ed9e476136a6608c7547539cea5b5c888b177ca93aeaa67b2466ada3982a
- SHA512
  
  466cb7b1e19ac5ebb4c1186bfb74b95ae8b21f621cbd538060c45df1d62520f9b03bad9ce19c30143ad1b04d47bcb1d4235c8d519647ecbcd6ec13b2cf5ddd69
- SSDEEP
  
  12288:Md+At7LVue0pEt/g+mKCPVIHM9uSLllGKV:M0CiQXmPdIHofwE
Score

1^/10
behavioral3 behavioral4
- Target
  
  Libs/libEGL.dll
- Size
  
  258KB
- MD5
  
  3abaa006e1842b5a3cbed2a41476cae8
- SHA1
  
  717f3cf9e7c07073f41841cd7fa9858b76265b33
- SHA256
  
  a96cdb651c862120489b30b40a716c3f20b772ac4ba8fc70aaccbb1a568005f2
- SHA512
  
  84fa2bf370797c7ad2e63287b6e4bb785a88871830ad261ae38afb05cf8bac574f68539bdc0327c3c254a49e52c7da28bc0ee748db99b2f82ca86b08d9f18735
- SSDEEP
  
  6144:O1w9H8OGFO/vqX/PSOW8ijs9z6Y1gpAOs+4uL68:O1aUFO/vqX/Pz2sb1gpjzv
Score

3^/10
behavioral5 behavioral6
- Target
  
  Libs/libgcc_s_dw2-1.dll
- Size
  
  153KB
- MD5
  
  49e51045f2951fd248318ac9f1ccb18e
- SHA1
  
  7a09bfa925fb2703bba5b26ddeae1ec7e3a481fb
- SHA256
  
  73b563935d96d328d5e13d05ddc35f24b69237e4c4b7b183ee66aeeb3ccd9c16
- SHA512
  
  df00015514bbcdd6d0ff9c38485ee65d7700fb7cadd4327d12230d63f078da5e9aa5fd11aec9f8c741bdf7c84c84c38543af1f71ebc12a4477415e2c5ab9deda
- SSDEEP
  
  3072:kBWuZL07xXI4ZUgZ/aAD4uQWh3C56jn/KutS8t/6aqDDNYt0c:Sw9Y4GVAD40h3f/KutSgGk
Score

3^/10
behavioral7 behavioral8
- Target
  
  concrt140.dll
- Size
  
  7.3MB
- MD5
  
  66e4d1076963f85b9ce83b2c5de45543
- SHA1
  
  bdb2a7b5e3e151839652d6fe18a76832aecea0a5
- SHA256
  
  fbc4074ffc36cbb2e4d23200d5b91d2fedc4c037dfcae21ce6e5c54d2295ceb7
- SHA512
  
  5b3ec6ed13ed1e3aaa22223f6440621e7a5ba906a4d6b933f1cee96bee33ad2ab80fa45de11f809b1e3721049c6bcab117ad8d1835d8588113c34ad4a363bddb
- SSDEEP
  
  49152:5eA/z2/jH2mnqxjsMYP9TQgNgokTKWcnMNWz/6UGM+4+eXGIWh4uw4y4q7WkXc8W:Ig
Score

3^/10
behavioral10 behavioral9
- Target
  
  cpfe.dll
- Size
  
  4.9MB
- MD5
  
  f0114abee0d719dee97b78058453d387
- SHA1
  
  348558256ccfc339b70ba695b7a852c188354aed
- SHA256
  
  11d8e3ca83d044d7e5595caed143fb4634ba18834aceee82963a1b80432351bf
- SHA512
  
  9d2fa6b4b73abbfdbc3ef1b4581104d684269b4f9f3a5f50bf88d5b5805903cc524453162da4672a2175ce8efeba080e11d81e8bddd995d3ebb2c47ee5851b4b
- SSDEEP
  
  98304:aXvjpr5EwEbgUq1m7tXIbbEIrOnEYojXQi59+tqK6LGC/nN9ydiGfQ/Z35WBe8h+:2/N9ydQxp61hnnCIMZpgqO4UAH
Score

3^/10
behavioral11 behavioral12
- Target
  
  kopje.rtf
- Size
  
  1.8MB
- MD5
  
  e5b1517921a1c423589c034caf44de00
- SHA1
  
  c8492bdd9a71a6bcf51179bfdcddcfa4ffb4388c
- SHA256
  
  d40bff228e6e7e91ec7fb7a35a390bff736758ea89260d6c55bc0aca204effc5
- SHA512
  
  3538938e77cb834b945f787f0880dfc771552bdd45296862cfaa2f2f673fd12779a2a1357327321f80e5786adea3dd63c619f89aa79b6c98433d3efad14b9c29
- SSDEEP
  
  49152:ObpiQjMczQhnGLnc2fgqSZWIig/+spaBw:O9AThnM1fgVZWIFpaBw
Score

1^/10
behavioral13 behavioral14
- Target
  
  lnstall.exe
- Size
  
  1.4MB
- MD5
  
  38901633c833cba7f682472ced0dbe4b
- SHA1
  
  0c11a1ac834d2b270ba60f3605109933ca11a7f0
- SHA256
  
  a5c5487194f761dac90e178c9c1753c0f47b041f3168b5c23a587f33f69e5089
- SHA512
  
  70d71197c68c9a92883c482aee76978e2a01e785be6fb3b6082369e25d991d3e03d8467e11d87493e54f5a3dc4bcd59fa588f0fabe5f6fdcf3361de95cb471c1
- SSDEEP
  
  24576:gLikjHtEvSKi9Q8K8Nj99HxJ+EbUUbnI11f4wuTLoYHTkPQ4JD7eK:gukT+SpRKaJb0f4wrCSP
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral15 behavioral16
- Target
  
  msvcp140.dll
- Size
  
  437KB
- MD5
  
  dc739066c9d0ca961cba2f320cade28e
- SHA1
  
  81ed5f7861e748b90c7ae2d18da80d1409d1fa05
- SHA256
  
  74e9268a68118bb1ac5154f8f327887715960ccc37ba9dabbe31ecd82dcbaa55
- SHA512
  
  4eb181984d989156b8703fd8bb8963d7a5a3b7f981fe747c6992993b7a1395a21f45dbedf08c1483d523e772bdf41330753e1771243b53da36d2539c01171cf1
- SSDEEP
  
  12288:kKB+zFjoLcAtFSYy9PA7TEsnmLIxhUgiW6QR7t5s03Ooc8dHkC2eszslz:kKMzFj4tFSYyO7TEsnmLIe03Ooc8dHkw
Score

3^/10
behavioral17 behavioral18
- Target
  
  vcruntime140.dll
- Size
  
  88KB
- MD5
  
  1d4ff3cf64ab08c66ae9a4013c89a3ac
- SHA1
  
  f9ee15d0e9b0b7e04ff4c8a5de5afcffe8b2527b
- SHA256
  
  65f620bc588d95fe2ed236d1602e49f89077b434c83102549eed137c7fdc7220
- SHA512
  
  65fbd68843280e933620c470e524fba993ab4c48ede4bc0917b4ebe25da0408d02daec3f5afcd44a3ff8aba676d2eff2dda3f354029d27932ef39c9fdea51c26
- SSDEEP
  
  1536:Lb8h/b8bgkjohTX6pz0y9v+xSUKF1IuCmgnKecbWJdazlTjznFKwcjzBG:LbWUgkOTX6ey9v+xSjFyuBecbWnaNjjb
Score

3^/10
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20