lumma | 3de2d6529192a01326d53d2c067de03002e0aaeebfe6647af331e88c24ae4159 | Triage

Sharing

General

Target

3de2d6529192a01326d53d2c067de03002e0aaeebfe6647af331e88c24ae4159
Size

1.3MB
Sample

241119-24lzqavhnq
MD5

bcffbe6a989829f17ce6970e4560a783
SHA1

c7bd294ed197de30f564bae692f84f223bb5f6be
SHA256

3de2d6529192a01326d53d2c067de03002e0aaeebfe6647af331e88c24ae4159
SHA512

f22c2385d65810341e8077e17ce4c2b418898594eec6a62b3a5c0e2d41293677d29f4e21164530272e15ff40f5f39a4f26af6e505a448bb947161450075be079
SSDEEP

24576:bAV4JpfkaBfdM27mL4P6J7/MJL3XXtl8aeQUgEJ4L1OyRga5yCXKK7QhrdnpVz:MV4nkaBK27ikS/MRtQ+BrymKrDHz

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://5h0rtr0ads.cyou/api

Targets

- Target
  
  bubs.exe
- Size
  
  1.6MB
- MD5
  
  3ed2e8c108a3c1910863fc1cb8192ca5
- SHA1
  
  cce53b2f8e10b02f3009e92fa5c899b83c9cc2b6
- SHA256
  
  791d892c9f3694e2ad95c93c38d73f36b22e1f430d3b251815c80f534bf176ee
- SHA512
  
  a6c0d3bc8a5b85ce6d7b8659bac85e88c01da6e5a69cb706882d33b4533c0f10296ad8eddca10a747a40d9911f2dfa13527c8af4aa18e569a626611f238d9a65
- SSDEEP
  
  49152:AJuDdRQpiycCgXXT7fdyGXezXNKRz7bX6Lvt/Tuk:iuRRj/ColyGXezXNKRz7bovt7uk
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer