lumma | f58d2e8974139c499488091f65ec314b21a096d6816f22bc5b5f49db8d3d37b8 | Triage

Sharing

General

Target

f58d2e8974139c499488091f65ec314b21a096d6816f22bc5b5f49db8d3d37b8
Size

1.9MB
Sample

241118-1thc4swlay
MD5

31fef883c10fe2dd3de98a091ef5776d
SHA1

e858f7047bda01ef1f397504c0dc858aab4d72b3
SHA256

f58d2e8974139c499488091f65ec314b21a096d6816f22bc5b5f49db8d3d37b8
SHA512

6e0957c6a305daa5f1a37d13d8ca9aa73fc9ec3e5fb12a7d30295a3a98530593a08ce55c91168b12d3f58ba5433e138ecee6fa50ff9e166663672a9a38fc9681
SSDEEP

49152:+iE03Xk+M4aZulnVkK4cvsZgtIQ94blEQxxfQt7:+ilkp4aZoVkmYgdilEQxx6

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://deliveryuzn.cyou/api

https://processhol.sbs/api

https://p10tgrace.sbs/api

https://peepburry828.sbs/api

https://3xp3cts1aim.sbs/api

https://p3ar11fter.sbs/api

Targets

- Target
  
  f58d2e8974139c499488091f65ec314b21a096d6816f22bc5b5f49db8d3d37b8
- Size
  
  1.9MB
- MD5
  
  31fef883c10fe2dd3de98a091ef5776d
- SHA1
  
  e858f7047bda01ef1f397504c0dc858aab4d72b3
- SHA256
  
  f58d2e8974139c499488091f65ec314b21a096d6816f22bc5b5f49db8d3d37b8
- SHA512
  
  6e0957c6a305daa5f1a37d13d8ca9aa73fc9ec3e5fb12a7d30295a3a98530593a08ce55c91168b12d3f58ba5433e138ecee6fa50ff9e166663672a9a38fc9681
- SSDEEP
  
  49152:+iE03Xk+M4aZulnVkK4cvsZgtIQ94blEQxxfQt7:+ilkp4aZoVkmYgdilEQxx6
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer