lumma | 2a627e55b12be1b4521658c25d2d46d38b87442f648070311cad06e4995a5304

General

Target

2a627e55b12be1b4521658c25d2d46d38b87442f648070311cad06e4995a5304.exe
Size

20.3MB
Sample

240817-bjasva1hkm
MD5

c8af5b81b11f3db6cb5b7efab33d11ef
SHA1

fdceb9bb5def7a1887738e9c72a28b411097df00
SHA256

2a627e55b12be1b4521658c25d2d46d38b87442f648070311cad06e4995a5304
SHA512

4812b40f14a3e41763b6645218631f3696e6264d483cdb44221cc1efbb8b71d325f3e921899ad203e894a5832cac4ab89974e94e378e20b1611028b4f4db8e39
SSDEEP

98304:xW+Gcm43XnW2C4/YzHVx4Bu+UxPi+YrmJihOeFXEQp3Bf0n+KXhX38XCaxpmMqmH:oiXy4/YzHVOuBi+YaJZQ3I+KRX38M

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://potentioallykeos.shop/api

https://interactiedovspm.shop/api

https://charecteristicdxp.shop/api

https://cagedwifedsozm.shop/api

https://deicedosmzj.shop/api

https://southedhiscuso.shop/api

https://consciousourwi.shop/api

https://weiggheticulop.shop/api

https://tenntysjuxmz.shop/api

Targets

- Target
  
  2a627e55b12be1b4521658c25d2d46d38b87442f648070311cad06e4995a5304.exe
- Size
  
  20.3MB
- MD5
  
  c8af5b81b11f3db6cb5b7efab33d11ef
- SHA1
  
  fdceb9bb5def7a1887738e9c72a28b411097df00
- SHA256
  
  2a627e55b12be1b4521658c25d2d46d38b87442f648070311cad06e4995a5304
- SHA512
  
  4812b40f14a3e41763b6645218631f3696e6264d483cdb44221cc1efbb8b71d325f3e921899ad203e894a5832cac4ab89974e94e378e20b1611028b4f4db8e39
- SSDEEP
  
  98304:xW+Gcm43XnW2C4/YzHVx4Bu+UxPi+YrmJihOeFXEQp3Bf0n+KXhX38XCaxpmMqmH:oiXy4/YzHVOuBi+YaJZQ3I+KRX38M
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2