lumma | 4195f3692d9d8a45d39993e15b454b893451224a1f08452ca7e3fc42ec340373

General

Target

4195f3692d9d8a45d39993e15b454b893451224a1f08452ca7e3fc42ec340373
Size

288KB
Sample

240822-phqpkazamn
MD5

aa9d133247a4484f9cb9afd482789229
SHA1

6b149f82918bca4f1fd43bf630566a14872b23f9
SHA256

4195f3692d9d8a45d39993e15b454b893451224a1f08452ca7e3fc42ec340373
SHA512

3ce3405280c6e9230851ee9384b3a89c47e3e886cdb36184b805388029286fc02594e32517369dc6f3c92425c5d4aeb5a5af3829dc606b3fae9745a69ec411e3
SSDEEP

6144:xSinB1sjjNnbUkmqMHDofwj9znN5YInDXxUWrKSkztoAa4MeW51EO:xPnB1sjjtXmqQofKh5XnfmS0toAa4MjL

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://charecteristicdxp.shop/api

https://potentioallykeos.shop/api

https://interactiedovspm.shop/api

https://cagedwifedsozm.shop/api

https://deicedosmzj.shop/api

https://southedhiscuso.shop/api

https://consciousourwi.shop/api

https://tenntysjuxmz.shop/api

Targets

- Target
  
  4195f3692d9d8a45d39993e15b454b893451224a1f08452ca7e3fc42ec340373
- Size
  
  288KB
- MD5
  
  aa9d133247a4484f9cb9afd482789229
- SHA1
  
  6b149f82918bca4f1fd43bf630566a14872b23f9
- SHA256
  
  4195f3692d9d8a45d39993e15b454b893451224a1f08452ca7e3fc42ec340373
- SHA512
  
  3ce3405280c6e9230851ee9384b3a89c47e3e886cdb36184b805388029286fc02594e32517369dc6f3c92425c5d4aeb5a5af3829dc606b3fae9745a69ec411e3
- SSDEEP
  
  6144:xSinB1sjjNnbUkmqMHDofwj9znN5YInDXxUWrKSkztoAa4MeW51EO:xPnB1sjjtXmqQofKh5XnfmS0toAa4MjL
Score

10^/10

discovery lumma stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2