lumma | 8576d861da76419d2a927ac65bc8496912c9185c45e502f4fd17e209d6481cf7 | Triage

Sharing

General

Target

8576d861da76419d2a927ac65bc8496912c9185c45e502f4fd17e209d6481cf7
Size

3.0MB
Sample

240507-p9erdabd34
MD5

55ff29c7d299024d943cc9bca1a4020f
SHA1

1905dc3559304d9cdd5329dfbc8adcc2fb8e7d9b
SHA256

8576d861da76419d2a927ac65bc8496912c9185c45e502f4fd17e209d6481cf7
SHA512

6ee9c8708d9c2a45cd0c7e996b3701e5171d5cfb7618a2474ed1bcdef0eec81f969380e4f328b907d64360dcc89475cae6f2d459669180259574fa231ba6feba
SSDEEP

49152:QB4Jd6QzY94VGMtTL4U86O4WJpG18NqRHY:lPx4D8OF/t

Score

10^/10

lumma stealer

Malware Config

Extracted

Family

lumma

C2

https://chunkylopsidedwos.shop/api

https://acceptabledcooeprs.shop/api

https://obsceneclassyjuwks.shop/api

https://zippyfinickysofwps.shop/api

https://miniaturefinerninewjs.shop/api

https://plaintediousidowsko.shop/api

https://sweetsquarediaslw.shop/api

https://holicisticscrarws.shop/api

https://boredimperissvieos.shop/api

Targets

- Target
  
  8576d861da76419d2a927ac65bc8496912c9185c45e502f4fd17e209d6481cf7
- Size
  
  3.0MB
- MD5
  
  55ff29c7d299024d943cc9bca1a4020f
- SHA1
  
  1905dc3559304d9cdd5329dfbc8adcc2fb8e7d9b
- SHA256
  
  8576d861da76419d2a927ac65bc8496912c9185c45e502f4fd17e209d6481cf7
- SHA512
  
  6ee9c8708d9c2a45cd0c7e996b3701e5171d5cfb7618a2474ed1bcdef0eec81f969380e4f328b907d64360dcc89475cae6f2d459669180259574fa231ba6feba
- SSDEEP
  
  49152:QB4Jd6QzY94VGMtTL4U86O4WJpG18NqRHY:lPx4D8OF/t
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2