lumma | 3266bf53273feea7374264865066f706462ea323d8c26cba051cfcbefc1fcb80

General

Target

3266bf53273feea7374264865066f706462ea323d8c26cba051cfcbefc1fcb80
Size

4.9MB
Sample

240820-s683lathjr
MD5

4b85d1518b4edc2239da008e3a91a323
SHA1

bf33b8db7b6a40aff7f8a171e6d6169b2dac73fb
SHA256

3266bf53273feea7374264865066f706462ea323d8c26cba051cfcbefc1fcb80
SHA512

4b1c480341d42b8a7c78022dbb47ec3a5e1fc3b5852c2a04afd9713cb459217857efb377683e84231a52c13dba405eb4de49ec11ac5eee60a8175c40254281a4
SSDEEP

49152:0GxYkG5bhNgDjTkxPpq89ZyQo+3rk8nT2X0m/EbwNjPXAjb5Et/VMW/TJxFPRcKd:DBGFIDOrzT2ke6EK1GdCLuF

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://drinnkysoapmzv.shop/api

https://potentioallykeos.shop/api

https://interactiedovspm.shop/api

https://charecteristicdxp.shop/api

https://cagedwifedsozm.shop/api

https://deicedosmzj.shop/api

https://southedhiscuso.shop/api

https://consciousourwi.shop/api

https://tenntysjuxmz.shop/api

Targets

- Target
  
  3266bf53273feea7374264865066f706462ea323d8c26cba051cfcbefc1fcb80
- Size
  
  4.9MB
- MD5
  
  4b85d1518b4edc2239da008e3a91a323
- SHA1
  
  bf33b8db7b6a40aff7f8a171e6d6169b2dac73fb
- SHA256
  
  3266bf53273feea7374264865066f706462ea323d8c26cba051cfcbefc1fcb80
- SHA512
  
  4b1c480341d42b8a7c78022dbb47ec3a5e1fc3b5852c2a04afd9713cb459217857efb377683e84231a52c13dba405eb4de49ec11ac5eee60a8175c40254281a4
- SSDEEP
  
  49152:0GxYkG5bhNgDjTkxPpq89ZyQo+3rk8nT2X0m/EbwNjPXAjb5Et/VMW/TJxFPRcKd:DBGFIDOrzT2ke6EK1GdCLuF
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2