lumma | cb405648ffe2280384418f213ce834232a3260c2da5ea3e0ac0a6d253ea15109

General

Target

cb405648ffe2280384418f213ce834232a3260c2da5ea3e0ac0a6d253ea15109.exe
Size

12.7MB
Sample

240813-wf8kxsxgjd
MD5

f98bd31bd060d968a3ce6c2b7b0263ef
SHA1

5d1cf5c587dcd940417a59d3ac7bf55722207d01
SHA256

cb405648ffe2280384418f213ce834232a3260c2da5ea3e0ac0a6d253ea15109
SHA512

c72e7ab5e632d03a69011e49179646d8f35545d4f83fa0821bc7f5982bb3a959b27d7f57d3a8d13812ba74925ff83f355b0346c85a31f3b390ed1b2a64dd6fc5
SSDEEP

98304:98KNNvK2cgOHgFpUco4xd3nEPpEmCWEZdOQ17P:ifrHgFpUco4xd3npmCWrwP

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://incentiospzxm.shop/api

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://mennyudosirso.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

https://tenntysjuxmz.shop/api

Targets

- Target
  
  cb405648ffe2280384418f213ce834232a3260c2da5ea3e0ac0a6d253ea15109.exe
- Size
  
  12.7MB
- MD5
  
  f98bd31bd060d968a3ce6c2b7b0263ef
- SHA1
  
  5d1cf5c587dcd940417a59d3ac7bf55722207d01
- SHA256
  
  cb405648ffe2280384418f213ce834232a3260c2da5ea3e0ac0a6d253ea15109
- SHA512
  
  c72e7ab5e632d03a69011e49179646d8f35545d4f83fa0821bc7f5982bb3a959b27d7f57d3a8d13812ba74925ff83f355b0346c85a31f3b390ed1b2a64dd6fc5
- SSDEEP
  
  98304:98KNNvK2cgOHgFpUco4xd3nEPpEmCWEZdOQ17P:ifrHgFpUco4xd3npmCWrwP
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2