lumma | 4406e60b91320a9df156733902e256207aea47b496d8abe882db20f2908130fe

General

Target

Loader.exe
Size

459KB
Sample

240522-x2rd7sdd81
MD5

3e813dde943f8bc1c64ff1d6fb5f5442
SHA1

9c822e820b3108caca86a5adcb86dcd2fb7a1a2c
SHA256

4406e60b91320a9df156733902e256207aea47b496d8abe882db20f2908130fe
SHA512

42352ce5c3a39d05d37731a7feb35e01db835dbe861a95a1835144ead3c59209ee6f4d2574dc3111d5ea2f5ef9a9b68c6bf5dee08ba32160d5b97bb6d223e162
SSDEEP

6144:ARc5tEKmC4P2uNTEsXC/CyRMSz/t3EzIKdB37DNl2p03fcqJXEOFm6p09zKXlPUY:AS5tgn7S/CyK0t3EzhL+Qr0E1s82RR

Score

10^/10

lumma stealer

Malware Config

Extracted

Family

lumma

C2

https://museumtespaceorsp.shop/api

https://buttockdecarderwiso.shop/api

https://averageaattractiionsl.shop/api

https://femininiespywageg.shop/api

https://employhabragaomlsp.shop/api

https://stalfbaclcalorieeis.shop/api

https://civilianurinedtsraov.shop/api

https://roomabolishsnifftwk.shop/api

Targets

- Target
  
  Loader.exe
- Size
  
  459KB
- MD5
  
  3e813dde943f8bc1c64ff1d6fb5f5442
- SHA1
  
  9c822e820b3108caca86a5adcb86dcd2fb7a1a2c
- SHA256
  
  4406e60b91320a9df156733902e256207aea47b496d8abe882db20f2908130fe
- SHA512
  
  42352ce5c3a39d05d37731a7feb35e01db835dbe861a95a1835144ead3c59209ee6f4d2574dc3111d5ea2f5ef9a9b68c6bf5dee08ba32160d5b97bb6d223e162
- SSDEEP
  
  6144:ARc5tEKmC4P2uNTEsXC/CyRMSz/t3EzIKdB37DNl2p03fcqJXEOFm6p09zKXlPUY:AS5tgn7S/CyK0t3EzhL+Qr0E1s82RR
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2

T1012

System Information Discovery

1

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2