lumma | 62f65a3341c25a7c3cb340ed4252007d86041c2c0333edc7ebc0ba83cad9bf8f | Triage

Sharing

General

Target

CheatInjector.exe
Size

390KB
Sample

240914-jmycbatepa
MD5

d7a08f9341f662dcd30c35066b5ed820
SHA1

52ff898ddcc0855a347b715284c2c7071ae005b9
SHA256

62f65a3341c25a7c3cb340ed4252007d86041c2c0333edc7ebc0ba83cad9bf8f
SHA512

21188f05bda54a873191854b80366dda5e41e911d64cd6467df92ad96b2ce83766fd7c3aa9c60b634cb7b21e99c25392d880ffc63b0e9a7b738b9342b19fbf14
SSDEEP

6144:VMcKOoCcsmqzUkk7/8/Q+1+duHMWRGAKwMZjHIqkxfZHO10v2S7eS8sDmBLLEO:kvCcsmSUwzq0Oha5J32S7eV9LEO

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://writerospzm.shop/api

Targets

- Target
  
  CheatInjector.exe
- Size
  
  390KB
- MD5
  
  d7a08f9341f662dcd30c35066b5ed820
- SHA1
  
  52ff898ddcc0855a347b715284c2c7071ae005b9
- SHA256
  
  62f65a3341c25a7c3cb340ed4252007d86041c2c0333edc7ebc0ba83cad9bf8f
- SHA512
  
  21188f05bda54a873191854b80366dda5e41e911d64cd6467df92ad96b2ce83766fd7c3aa9c60b634cb7b21e99c25392d880ffc63b0e9a7b738b9342b19fbf14
- SSDEEP
  
  6144:VMcKOoCcsmqzUkk7/8/Q+1+duHMWRGAKwMZjHIqkxfZHO10v2S7eS8sDmBLLEO:kvCcsmSUwzq0Oha5J32S7eV9LEO
Score

10^/10

discovery lumma stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lummadiscoverystealer