lumma | a9e3340552590fbec757df2aa8f0086e53f3b92804640fde9e361bc3e9e8f493 | Triage

Sharing

General

Target

0d457829ccfd010f8c9b3e034700c8ab
Size

12.5MB
Sample

240914-kdv19svgpg
MD5

0d457829ccfd010f8c9b3e034700c8ab
SHA1

740b861cdef057d43187651cb32e5622e4d1b7f0
SHA256

a9e3340552590fbec757df2aa8f0086e53f3b92804640fde9e361bc3e9e8f493
SHA512

11fc6fee1eed94c292417c9d6ceb78a9174d4582c0301922d8f08641aefa45eafb733662099af5bc437155600797b94e9b5a577dfbec8645cba33b861acc96a1
SSDEEP

196608:S/xovj7gIKqxzID1w2yXcRtZ7s7bTsW6+ficLcThHcGIkQu2MQlwnDK3uWQ6MOLV:gGlKszIJw0347bX61U0eGIkQhjwOIOLV

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

Targets

- Target
  
  Launcherx32_64x.exe
- Size
  
  30.4MB
- MD5
  
  20a3f45477271bc29af04c814e2bc396
- SHA1
  
  ae679a970e4129bac85afeaf12449087236567f6
- SHA256
  
  dc3eb5735b3544da88a478c7790f21e8e9933f1a5a2e834c7d5a07d494913217
- SHA512
  
  33abda7ae0ebe253709c84610dba2210d094908df2102dbad52185d69d3ea3dbcfd4841261bcf9929a6e209bb99ce1357bbe7c747c6fad2fd76a65d5e9905f9f
- SSDEEP
  
  98304:EuHmYsjblls+9ekPqj08y/GAfYVw02WLZOcKv6lKSMUGzgGWU72EmjIhioc6hq1+:tbOD/g2uQzv6lKSMUGzgGK976MrHY
Score

10^/10

lumma stealer discovery
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2
- Target
  
  dll/Qt5Gui.dll
- Size
  
  4.8MB
- MD5
  
  d9b78f4b2f8f393c8854c7cc95eae5d8
- SHA1
  
  8d648e7bda5b6bf7b02041189b9823fe8d4689e5
- SHA256
  
  55faebb8f5e28cde50f561bbd2638db7edcfd26e7ee7b975e0049b113145ae38
- SHA512
  
  6e76b524a56cc9bb5ae4beeedd41a48c35cf03c730752da3cae49862cb7bc3c17283099c39787f5933c1771eca7c2e651d92b961de7f43813f026eb295c90c81
- SSDEEP
  
  49152:PcLeg66Ry8jdAYbppzo7Tzj1/JrRbkwW6Ydzzr3YCWizxCqDRkU9i4g1/JAyn:kLrBpr1o7bRyfdzzxz0NTA4
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  dll/Qt5Widgets.dll
- Size
  
  4.3MB
- MD5
  
  f697ffc85fb86d72654c4f5ba4e1bdc2
- SHA1
  
  670657f598d408ab232dec75be6fc7983bc5ce4b
- SHA256
  
  400fa69aa8803f6c3a6f9a5fc956475d0396095c4b6d4665b7aa29bbcb8e3640
- SHA512
  
  47513892c22a193c51ecf09c8f3e4c4271a92be33b7b7d535290ea75a1498c5531881a26a85dbf758361e6892abf12a796f1c5c284a34f1d173d61d2012325b7
- SSDEEP
  
  49152:Zhk8cs4FhK1FKBxR8Lcdm0OTqZ7uA/GrXHIaTU+cDZ0V37SUJ:7k8ymoBxKAdmL8yONaQi32UJ
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  dll/msssvcr12320.dll
- Size
  
  948KB
- MD5
  
  034ccadc1c073e4216e9466b720f9849
- SHA1
  
  f19e9d8317161edc7d3e963cc0fc46bd5e4a55a1
- SHA256
  
  86e39b5995af0e042fcdaa85fe2aefd7c9ddc7ad65e6327bd5e7058bc3ab615f
- SHA512
  
  5f11ef92d936669ee834a5cef5c7d0e7703bf05d03dc4f09b9dcfe048d7d5adfaab6a9c7f42e8080a5e9aad44a35f39f3940d5cca20623d9cafe373c635570f7
- SSDEEP
  
  12288:LBmFyjLAOQaYkxGXPfY7eiWWcpOKnpTVOIxhK765qlRRb6x4pI23IbJQV:dmFyjLF847eiWWcoGZVOIxh/WxIAIbGV
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  dll/suppID.dll
- Size
  
  14.0MB
- MD5
  
  d3fb168e5cdacfdd55c10d6bb78ea8fa
- SHA1
  
  cbae74a8cc0ed32f2167685c093b6cf74d1a9f7c
- SHA256
  
  885f135e78fb8fd1c3aebfb43a2fb0edb847b30dc12377e2c5bf65383a101dd9
- SHA512
  
  8c4cd43308e399688398c7b213b1754fe744e760db4c08664be0adab79cedbc76e9bf82376a4814bcba8913c1bed1abd3b2d75feabd0bb469a7b4ce5af8380fe
- SSDEEP
  
  3:N/d:3
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lummadiscoverystealer

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10