lumma | 314a3fcb16de9f8bbfbf2bd960b85a499b1722177cc2dfdcc9f6d96528ef4ca4 | Triage

Submit
Reports

Overview

overview

Static

static

3

payload_pump_7KVV.exe

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

payload_pump_7KVV.exe
Size

91.1MB
Sample

240605-s2tgcabh44
MD5

cb34c0a2266f0f6d929792523c17b629
SHA1

d4b343373c4e6991e21eed15b7917e6c78da24b2
SHA256

314a3fcb16de9f8bbfbf2bd960b85a499b1722177cc2dfdcc9f6d96528ef4ca4
SHA512

00b7e03012150ad835d3bbf8e85aee3a38f1a52a0e906858f28627e379becce8e7a4009156849286a0abd21abeccf99e356e2bd0d670389c0eb5ab52d915365a
SSDEEP

1572864:7yRUVTTWRimY9H8V1OLgkUxbIODsFRJso+1EtYlyI6RQLjgqCarxpBTxEygAwXyS:FV3mT1yJB+ielyI2cjgqCEiyS

Score

10^/10

lumma stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

payload_pump_7KVV.exe

Resource

win10-20240404-en

windows10-1703-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

lumma

C2

https://peceptioglaciero.shop/api

https://distincttangyflippan.shop/api

https://macabrecondfucews.shop/api

https://greentastellesqwm.shop/api

https://stickyyummyskiwffe.shop/api

https://sturdyregularrmsnhw.shop/api

https://lamentablegapingkwaq.shop/api

https://innerverdanytiresw.shop/api

https://standingcomperewhitwo.shop/api

Targets

- Target
  
  payload_pump_7KVV.exe
- Size
  
  91.1MB
- MD5
  
  cb34c0a2266f0f6d929792523c17b629
- SHA1
  
  d4b343373c4e6991e21eed15b7917e6c78da24b2
- SHA256
  
  314a3fcb16de9f8bbfbf2bd960b85a499b1722177cc2dfdcc9f6d96528ef4ca4
- SHA512
  
  00b7e03012150ad835d3bbf8e85aee3a38f1a52a0e906858f28627e379becce8e7a4009156849286a0abd21abeccf99e356e2bd0d670389c0eb5ab52d915365a
- SSDEEP
  
  1572864:7yRUVTTWRimY9H8V1OLgkUxbIODsFRJso+1EtYlyI6RQLjgqCarxpBTxEygAwXyS:FV3mT1yJB+ielyI2cjgqCEiyS
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of NtCreateThreadExHideFromDebugger
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy