lumma | 6dd56883f3859125dc866de12db54a56dbac48e5aba02b0152de6b2250063fb9 | Triage

Sharing

General

Target

lnjectorxStartupe.exe
Size

4.3MB
Sample

241004-z3lw8a1dpf
MD5

8418ea12f6bb0940a9231829f9926288
SHA1

097648acd5cc4f8a0917318c4dadb43edad413c6
SHA256

6dd56883f3859125dc866de12db54a56dbac48e5aba02b0152de6b2250063fb9
SHA512

3369e2c8764cd3171a23dc626ce3111b807921a328c7a54d43418a86edae1b11b29b0c6253c142fb3f8bb41828579e93682156d1b75e2d7667f09d00c07e1085
SSDEEP

49152:YD7rkbFza8IBn2cpi7cSgWVh07Z2GBc024xF6QKRaTz+bW/pT3gbf7FMz:mvkbMB2kZ2rUF6QKRxbGpuw

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

Extracted

Family

lumma

C2

https://mobbipenju.store/api

https://eaglepawnoy.store/api

https://dissapoiznw.store/api

https://studennotediw.store/api

https://bathdoomgaz.store/api

https://spirittunek.store/api

Targets

- Target
  
  lnjectorxStartupe.exe
- Size
  
  4.3MB
- MD5
  
  8418ea12f6bb0940a9231829f9926288
- SHA1
  
  097648acd5cc4f8a0917318c4dadb43edad413c6
- SHA256
  
  6dd56883f3859125dc866de12db54a56dbac48e5aba02b0152de6b2250063fb9
- SHA512
  
  3369e2c8764cd3171a23dc626ce3111b807921a328c7a54d43418a86edae1b11b29b0c6253c142fb3f8bb41828579e93682156d1b75e2d7667f09d00c07e1085
- SSDEEP
  
  49152:YD7rkbFza8IBn2cpi7cSgWVh07Z2GBc024xF6QKRaTz+bW/pT3gbf7FMz:mvkbMB2kZ2rUF6QKRxbGpuw
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer