lumma | 2395a121ba25ef0cd56285f5891bb4c66a83f8abfd1bb0c276eec3c24e5460ff | Triage

Sharing

General

Target

software.exe
Size

959KB
Sample

240806-nhv4ls1hle
MD5

0bac3373f81edf75fa804adf8786be46
SHA1

d1c74aa856e5ff2059960588049ff770fd226827
SHA256

2395a121ba25ef0cd56285f5891bb4c66a83f8abfd1bb0c276eec3c24e5460ff
SHA512

5bfa8458256729ddb012bbcf63c5c9cae84890e8d44fe08c8801514f8b899126722fcbf549fea3e3e579505c0e09b43534d348daff7b1a679c4126e0d4f95862
SSDEEP

24576:VhrHArtAo783Ib5QCBbCYXl0e+N+qtRVqmSwzt2Ngkq/2:brFo783IdQoChN+qAmpkqe

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://sulphurhsum.shop/api

Targets

- Target
  
  software.exe
- Size
  
  959KB
- MD5
  
  0bac3373f81edf75fa804adf8786be46
- SHA1
  
  d1c74aa856e5ff2059960588049ff770fd226827
- SHA256
  
  2395a121ba25ef0cd56285f5891bb4c66a83f8abfd1bb0c276eec3c24e5460ff
- SHA512
  
  5bfa8458256729ddb012bbcf63c5c9cae84890e8d44fe08c8801514f8b899126722fcbf549fea3e3e579505c0e09b43534d348daff7b1a679c4126e0d4f95862
- SSDEEP
  
  24576:VhrHArtAo783Ib5QCBbCYXl0e+N+qtRVqmSwzt2Ngkq/2:brFo783IdQoChN+qAmpkqe
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer