lumma | e256e71340c2d28a267a681ac09c835c963d75dd93e4a89b90966b92237c3a25 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Full-Setup.exe
Size

14.0MB
Sample

240908-mcp5qsshjg
MD5

1695d5736b3e7cf17724630bbd642cd9
SHA1

ac72e7d29b994776e57b1782559128fe33a75f75
SHA256

e256e71340c2d28a267a681ac09c835c963d75dd93e4a89b90966b92237c3a25
SHA512

3cfd8d5f438cb44c159d47360422b9e589da2d280cf3c08c4e967ffef7112dda25e2b8c53b4a7065fefdc2b6eadbc6498a0e135299e1858126b0f05bfba71ab5
SSDEEP

98304:pkCJlnxraeJiWVKQi7kmeHh2yeH7rkfvVs:YWwQi7ZkfvVs

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://disappointypsm.shop/api

https://millyscroqwp.shop/api

https://stagedchheiqwo.shop/api

https://condedqpwqm.shop/api

Targets

- Target
  
  Full-Setup.exe
- Size
  
  14.0MB
- MD5
  
  1695d5736b3e7cf17724630bbd642cd9
- SHA1
  
  ac72e7d29b994776e57b1782559128fe33a75f75
- SHA256
  
  e256e71340c2d28a267a681ac09c835c963d75dd93e4a89b90966b92237c3a25
- SHA512
  
  3cfd8d5f438cb44c159d47360422b9e589da2d280cf3c08c4e967ffef7112dda25e2b8c53b4a7065fefdc2b6eadbc6498a0e135299e1858126b0f05bfba71ab5
- SSDEEP
  
  98304:pkCJlnxraeJiWVKQi7kmeHh2yeH7rkfvVs:YWwQi7ZkfvVs
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

behavioral3

lummadiscoverystealer

behavioral4