lumma | 8fd92d64013a6dd6515579aa3053ba21abd4413b014c8ab23b91657b92960363 | Triage

Sharing

General

Target

Installer (infected).zip
Size

33.9MB
Sample

241006-h5cmwsverk
MD5

b30b52c2e93cb3de0a682f601f09fa65
SHA1

b6e721fbc3ec918ee2415a1ae5a995dfc0ba87d2
SHA256

8fd92d64013a6dd6515579aa3053ba21abd4413b014c8ab23b91657b92960363
SHA512

c0e60624760dd8f23dc0b95ff2eec38550e672e62d93e53deb16bbd83f5cb88f214d0f0948d1735fa6d7ccc78bb6768f3d8fe3a55f11334b45fdd94d0386a234
SSDEEP

786432:av3XEqq36nDj9gD199nWT8t6zQOrbV0WO7/alQrAYYgr5JA:av3vq3OP9gD5nu88MOr6bTalopr5a

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

Targets

- Target
  
  Installer/Installer.exe
- Size
  
  3.7MB
- MD5
  
  640236b179a4c7c40776a6a252f95b1a
- SHA1
  
  f9b1ded41de3df7d7b736d15b6944f37c432549e
- SHA256
  
  a0f93aca0dc6a1122b85893383c6ab1ee25a6f2c2a0d86cb419cc2c68e27243b
- SHA512
  
  b5e7e05bc68ecba0917db7e28583dc5486e3cec9909bfc1be51fad3c38f7b9b82bf56389512313154b0dd02d7a7fe2c4cd1984a219eecd7e6f3aec9c3618ec5d
- SSDEEP
  
  49152:8cnd825pb/8zDoGH2VdjrTURpKes/43A2mVn33usLMS:8X2H7ERCjrTgpKes43A2mR33/gS
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer