lumma | 7b796534a2751b12db07d851038a11aa11681e7062cbffbe37456ffccd52f434 | Triage

Sharing

General

Target

2024091898b941f7d27784673cfee33a67c2a6afpoetratsnatch
Size

21.5MB
Sample

240919-hwtvtawerb
MD5

98b941f7d27784673cfee33a67c2a6af
SHA1

894acf7f7bd276caab3f7b090c43c5803c2068c4
SHA256

7b796534a2751b12db07d851038a11aa11681e7062cbffbe37456ffccd52f434
SHA512

1ac33e7c671601e0ce5594d13e2d9c8b79a362a1dc3c618312b70f22d235798e0911990088cb0457001522ec25381af980585784797b88f1ecd71b5ebf4403ad
SSDEEP

196608:uFSKSW1Jv8Xvt6Lne4YiQPY2/2MqGXfZ70I:QNJEd4YiQAjqS

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://professinowpqqz.shop/api

Targets

- Target
  
  2024091898b941f7d27784673cfee33a67c2a6afpoetratsnatch
- Size
  
  21.5MB
- MD5
  
  98b941f7d27784673cfee33a67c2a6af
- SHA1
  
  894acf7f7bd276caab3f7b090c43c5803c2068c4
- SHA256
  
  7b796534a2751b12db07d851038a11aa11681e7062cbffbe37456ffccd52f434
- SHA512
  
  1ac33e7c671601e0ce5594d13e2d9c8b79a362a1dc3c618312b70f22d235798e0911990088cb0457001522ec25381af980585784797b88f1ecd71b5ebf4403ad
- SSDEEP
  
  196608:uFSKSW1Jv8Xvt6Lne4YiQPY2/2MqGXfZ70I:QNJEd4YiQAjqS
Score

10^/10

discovery lumma stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lummadiscoverystealer