lumma | a528a2469e02910f846006ea984921ccd2eb7e21147cfd505fda1e4f835ef6c5 | Triage

Sharing

General

Target

a528a2469e02910f846006ea984921ccd2eb7e21147cfd505fda1e4f835ef6c5
Size

4.9MB
Sample

241118-s2nabszbjh
MD5

355e27a8309b056a8a4cbc75ded7d79e
SHA1

d67350e294cb5ce69f93051b4fa6d22fdac0d4c3
SHA256

a528a2469e02910f846006ea984921ccd2eb7e21147cfd505fda1e4f835ef6c5
SHA512

577533c3244227c16547cb2430a9fdd98ec68804ea20b5636c2391090be767976a343cfe410b01f41bc9fe34e4830200a6a67c149f0494cc0b44bfb901cd3183
SSDEEP

98304:AKvneCOVNpZf2RmCw6+8Maz8cTDdaRxsDv7:BeC0NffQZWcVaRxsDv7

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://acrith0t.cyou/api

Targets

- Target
  
  a528a2469e02910f846006ea984921ccd2eb7e21147cfd505fda1e4f835ef6c5
- Size
  
  4.9MB
- MD5
  
  355e27a8309b056a8a4cbc75ded7d79e
- SHA1
  
  d67350e294cb5ce69f93051b4fa6d22fdac0d4c3
- SHA256
  
  a528a2469e02910f846006ea984921ccd2eb7e21147cfd505fda1e4f835ef6c5
- SHA512
  
  577533c3244227c16547cb2430a9fdd98ec68804ea20b5636c2391090be767976a343cfe410b01f41bc9fe34e4830200a6a67c149f0494cc0b44bfb901cd3183
- SSDEEP
  
  98304:AKvneCOVNpZf2RmCw6+8Maz8cTDdaRxsDv7:BeC0NffQZWcVaRxsDv7
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer