lumma | d4130dd7e8ad698c924bde624d0c5442ace0e5e146ed05f3b79da71ffcd0ca52 | Triage

Sharing

General

Target

d4130dd7e8ad698c924bde624d0c5442ace0e5e146ed05f3b79da71ffcd0ca52.zip
Size

21.3MB
Sample

240907-b6xwwsyhkh
MD5

a70d7acb6567ab5fb2ef753ae1c5adec
SHA1

3eb4238970a6a055a70b639b1e2c509799627669
SHA256

d4130dd7e8ad698c924bde624d0c5442ace0e5e146ed05f3b79da71ffcd0ca52
SHA512

1b1e4bd12c292b74ae2260916971e784e8f59ec277c656ef1e41c372359e7c6a7d33d2c4e3f3d68c191bef94e5178d8dede5461eef6e776ed6c4c1ae10b6d715
SSDEEP

393216:eTQYx/zayBtZpHalQof18ug3XQBquvpgfQ/Qpbz2U4xgHIIfYRXc:eb/o6jySfQsqpfc

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://dairyucoemwk.shop/api

https://condedqpwqm.shop/api

Targets

- Target
  
  Setup.exe
- Size
  
  662.3MB
- MD5
  
  b088f2ed5b2f867e51a7b0f427e639b0
- SHA1
  
  bd8e4269e391249440464f85c182c80e6ebf29b7
- SHA256
  
  cf420aadfc2d76e3cfc355df5fa7fec8fa808f8b0b3da00e04e6edbe5b4d2a46
- SHA512
  
  f6612ff154e4b8b06c07cf0fbdc1bcc9f0093f3d9707faaa0fb1f10079e0be9469fadbdebfdbb2c1c3d7d0674f58c1ec3200de7db38702ae12115ad56565ff93
- SSDEEP
  
  393216:8V+If6G/vdXxo6JtFHPKfK0VdaqA5ZuDFXRX7q9g1Ip1s1V+:8V+ILFX2WFcleg1IHx
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer