lumma | 737b556d3b68ea3bc0ee44dee71e26657802de630e039193e178a4d975c44187

Resubmissions

10/03/2024, 09:40

240310-lnnklshh9t 5

10/03/2024, 09:34

240310-lj5y4ahh2x 10

Sharing

Copy URL

Twitter E-mail

General

Target

AppSetapxWin64.86.rar
Size

25.7MB
Sample

240310-lj5y4ahh2x
MD5

b74d72b6b021d4f7e3d05e0e56780dd3
SHA1

2576c8a3c8e762b4e70816eea5b02f6e2ab7d473
SHA256

737b556d3b68ea3bc0ee44dee71e26657802de630e039193e178a4d975c44187
SHA512

79481fbc03b3b24fe5f2663f038abdd4786c1258b26b77e1f5ef3f98e9d2738e06595e4f670eedae271f77559d39a2d45d0a70628106208d578593a04b46a313
SSDEEP

393216:Ut1bzs7fiiy6I1RoQJsjhQ2f93kcBomld7enVfmDhaYPYTmEEBjcsxP7UjZfcvXr:AVQjidRo3hZGcfd7e1kaKcsR7UlU/Kq

Score

10^/10

lumma stealer

Malware Config

Extracted

Family

lumma

https://diamondarrivallyowju.shop/api

https://associationokeo.shop/api

Targets

- Target
  
  App.Setap/Setup.exe
- Size
  
  53KB
- MD5
  
  e5ea5d841cb79942698c4e952a199a29
- SHA1
  
  ebe0e313c26f87af8ddf4a5f0fad1a68fc5f59d5
- SHA256
  
  8e478da3eff27b1be19a893314927385156a62582d8ceffb5be2c8852aff19d7
- SHA512
  
  f3aad0d51939184282327a0ed5544f4a9dc71e6b46409909a11dd440680301b5d5c160d58c9586f68800ac544b6573c8215a0a32c270acf0bc611ebbb219e0c0
- SSDEEP
  
  768:LNF2WLAuDeGJiqrmehiVSrmaBP39V5+5CYiUFr3HPxWE2plx:LNS7qjh3rmKPND+5C7UdPxg
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2
- Target
  
  App.Setap/jli.dll
- Size
  
  89KB
- MD5
  
  9349f5381453899db4c7f5d8ae2ec05b
- SHA1
  
  b9e6e4d72130526acc3eb1ccc894cc898970054d
- SHA256
  
  25a6c26f5b8cb50a049c15b8cef920a407f8078aec15b53557cd3f19c3b353a6
- SHA512
  
  4f22d85d5c501bc6760e34ff6c901c354386ec63680371bedba5cedb7c51a37d295e3539081856b8730caea8be9ed9f89af3dbf8f63258b964f50ac80fa49fa5
- SSDEEP
  
  1536:nPaRxTza4z/ue3ihLzIfIc+2rIOdPwT5/K56d9RtOxqg3lS7UmeqPxP9:nPEKML3ihPI1+2ddPwT5/K56d9RYxq02
Score

1^/10
behavioral3 behavioral4
- Target
  
  App.Setap/libvlccore.dll
- Size
  
  2.6MB
- MD5
  
  e25413bb41c2f239ffdd3569f76e74b0
- SHA1
  
  073e2a86c5c24ede4c4ad2d8614261121a8d2661
- SHA256
  
  9126d9abf91585456000fffd9336478e91b9ea07ed2a25806a4e2e0437f96d29
- SHA512
  
  37b8339555dcf825a2e27464eb1d101f8e4b56460d1b78161e99ba6761f1a967668f11ba888a712c878d468f419a455dbc5e8e55e7fb9d4fbc87cb78f500ea9f
- SSDEEP
  
  49152:hDWA3C12sNU/wEz2tMEjv9DZWtxfc1lVG3QNVBAUZLYasUpGaXBuQQ9umM:t3O2wEz2tMEj1lWtOrVG3QNVBAUZLX/
Score

3^/10
behavioral5 behavioral6
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/access/libfilesystem_plugin.dll
- Size
  
  59KB
- MD5
  
  8fac15d2a2da66abdf345afa45ac5e3b
- SHA1
  
  553d4c9f39726d8aadb15fed7c904048928049e0
- SHA256
  
  66ef741a9282b420b09b940fbdbf666cd1625a8da18daaece036fcc4e1a74d38
- SHA512
  
  f756e3b3368245d4670cf0f86a6727858e3ead983b3e10c11d9b13e67d86b632703f44df70e648bb8edcad295744c763a268f4eb02ace0055405c3e9af124548
- SSDEEP
  
  768:D2y9ohNIged8Yy0NBdeOWxRPxYoWE487KcxN5ZEUUaDGFheDGFhW:D2yyhkKYloRPuEUcxHZEUUe
Score

1^/10
behavioral7 behavioral8
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/access/libimem_plugin.dll
- Size
  
  30KB
- MD5
  
  b0770c82314e94afd0d793774d66290b
- SHA1
  
  79b280cda1ca944478ebad7778f642d415de523a
- SHA256
  
  a5c2f2030e2cb70837d35e434d9793cafa04132e1823430ebcfbd4d985899637
- SHA512
  
  21f4780a6da31c84fbc0fe117eef11cbd796d837b7fa38ec8c5e025c8b318f0b925775a7dec1e909ee14da77d800a01115758e803ddeb605e1da0ccbff047133
- SSDEEP
  
  384:hfMDy/41Zo4M+7IXo8LPA2W9oPuyrPjvDGjoe0ghavDGjoe0ghs/:hb41m4t78xL439onDGFhMDGFhe
Score

1^/10
behavioral10 behavioral9
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/access/libfilesystem_plugin.dll
- Size
  
  59KB
- MD5
  
  8fac15d2a2da66abdf345afa45ac5e3b
- SHA1
  
  553d4c9f39726d8aadb15fed7c904048928049e0
- SHA256
  
  66ef741a9282b420b09b940fbdbf666cd1625a8da18daaece036fcc4e1a74d38
- SHA512
  
  f756e3b3368245d4670cf0f86a6727858e3ead983b3e10c11d9b13e67d86b632703f44df70e648bb8edcad295744c763a268f4eb02ace0055405c3e9af124548
- SSDEEP
  
  768:D2y9ohNIged8Yy0NBdeOWxRPxYoWE487KcxN5ZEUUaDGFheDGFhW:D2yyhkKYloRPuEUcxHZEUUe
Score

1^/10
behavioral11 behavioral12
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/access/libimem_plugin.dll
- Size
  
  30KB
- MD5
  
  b0770c82314e94afd0d793774d66290b
- SHA1
  
  79b280cda1ca944478ebad7778f642d415de523a
- SHA256
  
  a5c2f2030e2cb70837d35e434d9793cafa04132e1823430ebcfbd4d985899637
- SHA512
  
  21f4780a6da31c84fbc0fe117eef11cbd796d837b7fa38ec8c5e025c8b318f0b925775a7dec1e909ee14da77d800a01115758e803ddeb605e1da0ccbff047133
- SSDEEP
  
  384:hfMDy/41Zo4M+7IXo8LPA2W9oPuyrPjvDGjoe0ghavDGjoe0ghs/:hb41m4t78xL439onDGFhMDGFhe
Score

1^/10
behavioral13 behavioral14
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/audio_output/libdirectsound_plugin.dll
- Size
  
  51KB
- MD5
  
  077990f957556e8a72a37f0ee09a2083
- SHA1
  
  371908e5515adb53a57f8d2bda47d59a7346fc1b
- SHA256
  
  412f9ec13da17b2f2269567b8397b587352070ce77a641ae40b7a243e26c57ef
- SHA512
  
  420d536532ccd474176e2ad2421e655708e0835faa1a60f9b2a70f8a54fdd8d787567c30f478639a367d913b5b34e4e0a81c1c38d95d14351affb25abc536770
- SSDEEP
  
  768:htDcW2X9vjCOdZLae3hhwoOzHtdvQEarpDGFhcs3yDGFhed4:ht+X9vj/tJOYrVs1
Score

1^/10
behavioral15 behavioral16
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/audio_output/libwasapi_plugin.dll
- Size
  
  50KB
- MD5
  
  d217e0144d8d9237d284a38f9c3e6340
- SHA1
  
  fdf9f0edeecb0759fd8b502cd5314511e60f6347
- SHA256
  
  94eb16ffd5526836c715d0a1eedada03f0a1061920cbfd44fd4daee3dfabd1af
- SHA512
  
  22f7b1b05035011b95f3bf3f1ce4aeb43f8baaa8dde2f2d565dfbf83a9b0a00adaae9c941cd5a2ad4633444d9fe1410accb97a1dd16396afbe84679758738227
- SSDEEP
  
  768:Ldd4RCuijvRJQ3liXsC0Fdk/1dLNR7cDGFhGDGFhtN:LHrQ3M4k3LbN
Score

1^/10
behavioral17 behavioral18
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/codec/libavcodec_plugin.dll
- Size
  
  15.0MB
- MD5
  
  fad5798d2177993c88072f28581750e9
- SHA1
  
  029bb1a51e948f649ed8af73bb54b99493b7e233
- SHA256
  
  ab10e941252965e338b8b9351902c8eec98c71fa23dd431769a732ca109b5f22
- SHA512
  
  def4e1de52122ed8826b46f00067bbd3420e2591bb854310aad05e2e4f01923dec5400ad242ce3e3a71ae344794688ebb084fa534ba50f946f2e6ad0d0649161
- SSDEEP
  
  196608:mYci4iRQRGBBYqB0z6PLSEdEHq0BU4N22VrBnq6WT93f7xvMLbBZ4OflOfB62wss:pcK0BUj2VrX6wjA0/bsfXWpjf
Score

1^/10
behavioral19 behavioral20
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/codec/libd3d11va_plugin.dll
- Size
  
  267KB
- MD5
  
  1137f05e3030ce4031dfa68731650f25
- SHA1
  
  c1e78b9ad6c834d71b0f42ca0f4932f37b7b1579
- SHA256
  
  c5cea8862585850e651cbcc5883c70ce7d54e1871b53905b210b55ed9bc1fab1
- SHA512
  
  7b03d88f75a30cea02c766741550fb781f7a9a9472145558989e90cb8294f58d7104c79f94f2775fdb90edd38580d189816e63e56aa7c5f022e85d8bcab20a2c
- SSDEEP
  
  3072:66Auodqwn3PeCVFB5D9vQh9elVlUfJ36XkGF16EuEt75P7gKwO:6puodqe3RH5pvQHelVlJk81rZt1zgKT
Score

1^/10
behavioral21 behavioral22
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/video_output/libdirect3d11_plugin.dll
- Size
  
  327KB
- MD5
  
  267237343345265fe20a9688bd840de2
- SHA1
  
  99fee276074a4671e2b5ccceeaf71ec951df45e5
- SHA256
  
  0732c8978869bcbf11fa63f8cfbb5d6c75dfd8d34d176cae2dac99a261bcf2dd
- SHA512
  
  e354a8c0ec8c32792b6c356dc519d41319684ea2d20d18b61e19eeb8133a049db93ac6845e9ca7978f2933be9bf37eb3f608b81277dc14e3d7d240b206392196
- SSDEEP
  
  6144:bNQ3sPH66UG6wIt1YfZlfALhmUvzOFiFvxUg/G:bNQcPSt+fZlYLhmUvzOFgG
Score

1^/10
behavioral23 behavioral24
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/video_output/libdirect3d9_plugin.dll
- Size
  
  250KB
- MD5
  
  f910aee501d6fe100096dcdf9bd4b525
- SHA1
  
  c3aaf9ce5643695822cfa6935eefd4e39eaf3d14
- SHA256
  
  77a79184b2c81da3b98d501632fc8e5c8af6d078dd29414ae693906f51c343aa
- SHA512
  
  05fc6297fb44ef9e60cb975d941d98dd7bea9fbfea1e48723168725a887b1e1e8e00f97d8a5faf419039ee791c2f14404db61e65b40c767e17a1dcc2f6f84940
- SSDEEP
  
  3072:9qmAgP5gT5jgwWmy3A66o3VgKtbYD+7xwy7SeHZOP8ATA5j7EfCUgTRXMPba8:Ym3BQj66o3VgKtb8kS6Oxy0CUgTRXMe8
Score

1^/10
behavioral25 behavioral26
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/video_output/libdrawable_plugin.dll
- Size
  
  30KB
- MD5
  
  defb6d6c7bfbddafd3d48d47a69d47a8
- SHA1
  
  787c35fa991694f54834d007c13646a219ba43e4
- SHA256
  
  aa8cdd685be3ffecb848dd4264061536d562b784c473c3ad1abc1fc3527ac1f5
- SHA512
  
  2284fdaec89b819b695db72c493f59b11d60eeab24450c500b0972ee097eae0e51578c0a3044ed100c8ea29e389e46183400ab17140407eebb86a418e04b005f
- SSDEEP
  
  384:8SvFL5cokCvUip8Jp8kryYR5dhXveLvDGjoe0ghhH4vDGjoe0ghb:8G7bUHk4p5oDGFhUDGFhb
Score

1^/10
behavioral27 behavioral28
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_mixer/plugins/video_output/libvmem_plugin.dll
- Size
  
  33KB
- MD5
  
  30afe05b0f7f8dbcb10fb9533b189754
- SHA1
  
  e92e194b6c0b9b3abdf16f2d6a80081e61f3af65
- SHA256
  
  2062d5c42d295e8f01cf0d1c8402460597f1e2b9ba9f86cdad22014364a92782
- SHA512
  
  1ac4386671dd47fc9826b718b345295ae2b1a35a1198f4a0d9c0003a3983940df118e440ae9b02e7ff1d821e38eedbdfe1650d6dd02ef39da4c08ace4b17d634
- SSDEEP
  
  384:rS+8eWncmzOg/q+cdo93eCbtl8eI6EV2cHNpux+50zvDGjoe0ghK7vDGjoe0ghf:J8eW1dlXOejcHNv5yDGFhKLDGFhf
Score

1^/10
behavioral29 behavioral30
- Target
  
  App.Setap/locale/af/LC_MESSAGES/plugins/audio_output/libdirectsound_plugin.dll
- Size
  
  51KB
- MD5
  
  077990f957556e8a72a37f0ee09a2083
- SHA1
  
  371908e5515adb53a57f8d2bda47d59a7346fc1b
- SHA256
  
  412f9ec13da17b2f2269567b8397b587352070ce77a641ae40b7a243e26c57ef
- SHA512
  
  420d536532ccd474176e2ad2421e655708e0835faa1a60f9b2a70f8a54fdd8d787567c30f478639a367d913b5b34e4e0a81c1c38d95d14351affb25abc536770
- SSDEEP
  
  768:htDcW2X9vjCOdZLae3hhwoOzHtdvQEarpDGFhcs3yDGFhed4:ht+X9vj/tJOYrVs1
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32