lumma | 2eb611a890a34473ca80e7f867c85f6e185ac97ddce0a2b48ed99a0ad87095b7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Setup.exe
Size

45.6MB
Sample

240715-w28g2stckl
MD5

869595800b4ec47aea74229b01ef9873
SHA1

2ec1c89ba7de031a06bc79ca921f2015734d806d
SHA256

2eb611a890a34473ca80e7f867c85f6e185ac97ddce0a2b48ed99a0ad87095b7
SHA512

8cf5c084c363a9343612f91576594ff6ae9e4bbc65507e9024ef105c9e0ce6eb1bcf1373dbb517a2570d5ad7c3fc170e11d3ab48a48f5d56cdaa78ab1bbb4e89
SSDEEP

196608:HyvgjG1SD/GiUKzPeRdfcCRP59eVPCaG509ncB+wch2OH:HDG14/XU6e1fUVPCaC098fchH

Score

10^/10

lumma stealer

Malware Config

Extracted

Family

lumma

C2

https://arriveoxpzxo.shop/api

Targets

- Target
  
  Setup.exe
- Size
  
  45.6MB
- MD5
  
  869595800b4ec47aea74229b01ef9873
- SHA1
  
  2ec1c89ba7de031a06bc79ca921f2015734d806d
- SHA256
  
  2eb611a890a34473ca80e7f867c85f6e185ac97ddce0a2b48ed99a0ad87095b7
- SHA512
  
  8cf5c084c363a9343612f91576594ff6ae9e4bbc65507e9024ef105c9e0ce6eb1bcf1373dbb517a2570d5ad7c3fc170e11d3ab48a48f5d56cdaa78ab1bbb4e89
- SSDEEP
  
  196608:HyvgjG1SD/GiUKzPeRdfcCRP59eVPCaG509ncB+wch2OH:HDG14/XU6e1fUVPCaC098fchH
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4