lumma | 022845dbd0b028f17d257923279a9adcde5c7e4024f219059e0682c3825b7eae

General

Target

66b5ac1092454_otraba.exe
Size

6.4MB
Sample

240828-1dxg4aygjq
MD5

f46974f39aebf4f4d039600f3881d6b6
SHA1

0b39ed9e6f02bd36930da303933df76a48320701
SHA256

022845dbd0b028f17d257923279a9adcde5c7e4024f219059e0682c3825b7eae
SHA512

01ca6f8b8df34ba18a83521276078286f09b237bd7821011486de4161fc1f036fff864d407ab1865353458bde334284f7d8fe9ddc81c57f03a7386e55347b796
SSDEEP

98304:b4SlKWywcBysE28E894v+YgrgpwrOnlZ9FBUFw:bjlKW2oO+k+YjpsalZ9F6C

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://enfixxysdjsip.shop/api

https://celebratioopz.shop/api

https://writerospzm.shop/api

https://deallerospfosu.shop/api

https://bassizcellskz.shop/api

https://mennyudosirso.shop/api

https://languagedscie.shop/api

https://complaintsipzzx.shop/api

https://quialitsuzoxm.shop/api

Extracted

Family

lumma

C2

https://enfixxysdjsip.shop/api

https://writerospzm.shop/api

Targets

- Target
  
  66b5ac1092454_otraba.exe
- Size
  
  6.4MB
- MD5
  
  f46974f39aebf4f4d039600f3881d6b6
- SHA1
  
  0b39ed9e6f02bd36930da303933df76a48320701
- SHA256
  
  022845dbd0b028f17d257923279a9adcde5c7e4024f219059e0682c3825b7eae
- SHA512
  
  01ca6f8b8df34ba18a83521276078286f09b237bd7821011486de4161fc1f036fff864d407ab1865353458bde334284f7d8fe9ddc81c57f03a7386e55347b796
- SSDEEP
  
  98304:b4SlKWywcBysE28E894v+YgrgpwrOnlZ9FBUFw:bjlKW2oO+k+YjpsalZ9F6C
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Lumma Stealer, LummaC

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2