lumma | 1ccdc272269d98d214aa8223354daa4bcaf356f1ee5b1ae700097f9c4f3c4b3b

General

Target

Ulpack.exe
Size

28.9MB
Sample

240819-k397gsyelp
MD5

bc8539f2e2a2794706a15511c36113e0
SHA1

a248525875b584bd2001a9c860b29d3a9c7c5cb3
SHA256

1ccdc272269d98d214aa8223354daa4bcaf356f1ee5b1ae700097f9c4f3c4b3b
SHA512

e37cb8128dcf77d933822ce847b46568ea31a2e88998cf106879ecce16aada73ed48c823591a15c5116b5cc02a0da2b8759c4ff3a4a448fa8547f5b800620751
SSDEEP

98304:EBUqSI/biUxCBFijxAc8XbsVHRCfP7QWE9l/4qLvr6Mv+JZE5C2sHAujuLkRbaJo:52zAc8XbI8kT3/1/+g5C1gEHLmJ

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://solutionpxmuzo.shop/api

https://potentioallykeos.shop/api

https://interactiedovspm.shop/api

https://charecteristicdxp.shop/api

https://cagedwifedsozm.shop/api

https://deicedosmzj.shop/api

https://southedhiscuso.shop/api

https://consciousourwi.shop/api

https://tenntysjuxmz.shop/api

Targets

- Target
  
  Ulpack.exe
- Size
  
  28.9MB
- MD5
  
  bc8539f2e2a2794706a15511c36113e0
- SHA1
  
  a248525875b584bd2001a9c860b29d3a9c7c5cb3
- SHA256
  
  1ccdc272269d98d214aa8223354daa4bcaf356f1ee5b1ae700097f9c4f3c4b3b
- SHA512
  
  e37cb8128dcf77d933822ce847b46568ea31a2e88998cf106879ecce16aada73ed48c823591a15c5116b5cc02a0da2b8759c4ff3a4a448fa8547f5b800620751
- SSDEEP
  
  98304:EBUqSI/biUxCBFijxAc8XbsVHRCfP7QWE9l/4qLvr6Mv+JZE5C2sHAujuLkRbaJo:52zAc8XbI8kT3/1/+g5C1gEHLmJ
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2