lumma | 7d233935547785aa757807b0a483b8ac5fe9195297f0fc0f53d29931b9dbbfda | Triage

Sharing

General

Target

tmp
Size

308KB
Sample

240420-whj1caea93
MD5

d05ddc72d9c4fae1ee83e9ac16275afc
SHA1

852e1078974794aeaa40a74201efce257987be2c
SHA256

7d233935547785aa757807b0a483b8ac5fe9195297f0fc0f53d29931b9dbbfda
SHA512

3b0f662f28fa449146159da4821e0f6004edb57506159f8ac2bedd8a45e771bcfcb696c2f6a59a1df0c80099bb83c6a7d11542280ff411bba2397799a943a587
SSDEEP

6144:j11lb/L51L7HCaspEUi48UgZUbTtg/N0inheNH1e8EtlcjItq0a0:x/X/f418UgZUG10iOVM0

Score

10^/10

lumma stealer

Malware Config

Extracted

Family

lumma

C2

https://pushjellysingeywus.shop/api

https://entitlementappwo.shop/api

https://economicscreateojsu.shop/api

https://absentconvicsjawun.shop/api

https://suitcaseacanehalk.shop/api

https://bordersoarmanusjuw.shop/api

https://mealplayerpreceodsju.shop/api

https://wifeplasterbakewis.shop/api

Targets

- Target
  
  tmp
- Size
  
  308KB
- MD5
  
  d05ddc72d9c4fae1ee83e9ac16275afc
- SHA1
  
  852e1078974794aeaa40a74201efce257987be2c
- SHA256
  
  7d233935547785aa757807b0a483b8ac5fe9195297f0fc0f53d29931b9dbbfda
- SHA512
  
  3b0f662f28fa449146159da4821e0f6004edb57506159f8ac2bedd8a45e771bcfcb696c2f6a59a1df0c80099bb83c6a7d11542280ff411bba2397799a943a587
- SSDEEP
  
  6144:j11lb/L51L7HCaspEUi48UgZUbTtg/N0inheNH1e8EtlcjItq0a0:x/X/f418UgZUG10iOVM0
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2