lumma | a9ca10cd5556de003a1d418f24bf52037148e6829b75e914922c557c957bb318 | Triage

Sharing

General

Target

Apocalypse.exe
Size

393KB
Sample

240810-zxf4sascqc
MD5

3ce83cf49e0a79c3073bcc0ff5cca567
SHA1

0037d26ab9ed572bd5417105a10a14ce7a7148d8
SHA256

a9ca10cd5556de003a1d418f24bf52037148e6829b75e914922c557c957bb318
SHA512

89db1796ed283198b73dda9c541ae337ab261541b508606786c0068a85e3f0db4021c721a412f83162eefb04ccb91eb405cc9585fc7e889097bc58ddb65b59a6
SSDEEP

6144:whW7M6VBIrBrC3eSTbEYU2O4ctro9RzaKNgT5o0ff06rW5/T/AYq8c7sh+BBCoEO:FVmS/vbctroLu52/60/AYNcoO8oEO

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://mennyudosirso.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

https://tenntysjuxmz.shop/api

Targets

- Target
  
  Apocalypse.exe
- Size
  
  393KB
- MD5
  
  3ce83cf49e0a79c3073bcc0ff5cca567
- SHA1
  
  0037d26ab9ed572bd5417105a10a14ce7a7148d8
- SHA256
  
  a9ca10cd5556de003a1d418f24bf52037148e6829b75e914922c557c957bb318
- SHA512
  
  89db1796ed283198b73dda9c541ae337ab261541b508606786c0068a85e3f0db4021c721a412f83162eefb04ccb91eb405cc9585fc7e889097bc58ddb65b59a6
- SSDEEP
  
  6144:whW7M6VBIrBrC3eSTbEYU2O4ctro9RzaKNgT5o0ff06rW5/T/AYq8c7sh+BBCoEO:FVmS/vbctroLu52/60/AYNcoO8oEO
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer