lumma | 61fac55b4e82e517e2bb5645583ffa0c466b72b7ed331794a25569d7abe47eac

General

Target

Setup.exe.v
Size

5.6MB
Sample

241009-p8ltasvdmk
MD5

221670bc47fdd6cd700abdeffc776a3c
SHA1

b69c938db45776d97bf3dc5b0b4bea0d45db1d7f
SHA256

61fac55b4e82e517e2bb5645583ffa0c466b72b7ed331794a25569d7abe47eac
SHA512

c1c730948166f5ba0c2bb5009f0019f5c8ab6434086fb664d338a6ac430a915aec196d1f2f6b733f3de6e6cda09277e0bb71b11dffba3ff121c7f42eec38a07d
SSDEEP

49152:KT8IJMqQQFYn9nuVPuPkPypA3HVCicjKFzJhFwdcMjA093yCO+38pUCZl/L1dfLm:KJh7pN5KPDGedegqpNL3Ywo3PU

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://delaylacedmn.site

https://writekdmsnu.site

https://agentyanlark.site

https://bellykmrebk.site

https://underlinemdsj.site

https://commandejorsk.site

https://possiwreeste.site

https://famikyjdiag.site

https://worldresource.shop/api

Targets

- Target
  
  Setup.exe.v
- Size
  
  5.6MB
- MD5
  
  221670bc47fdd6cd700abdeffc776a3c
- SHA1
  
  b69c938db45776d97bf3dc5b0b4bea0d45db1d7f
- SHA256
  
  61fac55b4e82e517e2bb5645583ffa0c466b72b7ed331794a25569d7abe47eac
- SHA512
  
  c1c730948166f5ba0c2bb5009f0019f5c8ab6434086fb664d338a6ac430a915aec196d1f2f6b733f3de6e6cda09277e0bb71b11dffba3ff121c7f42eec38a07d
- SSDEEP
  
  49152:KT8IJMqQQFYn9nuVPuPkPypA3HVCicjKFzJhFwdcMjA093yCO+38pUCZl/L1dfLm:KJh7pN5KPDGedegqpNL3Ywo3PU
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Executes dropped EXE

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2