lumma | f4cb6bdc21dbb30cc85bf5fb368d3a49f52d312d3a45c448f7ae39e663df090c | Triage

Sharing

General

Target

2x.7z
Size

1.6MB
Sample

241119-gh559a1kbw
MD5

6ba2af5df53e24f734d3767c1fe4be7e
SHA1

9603d945d65f8aa2133a82111807b64226e6c302
SHA256

f4cb6bdc21dbb30cc85bf5fb368d3a49f52d312d3a45c448f7ae39e663df090c
SHA512

fd97d879f0a115f42438d427f23678496ddbfa443974b7d156c18e02b9036bd6c0219b3ffb6d176f09d580726ac99c30ce0629ea79be77f720c2e238db62b75e
SSDEEP

49152:Ybuk+E9aARfnbuNJcAsNawlY94YSE1CJv:Ybukx9aAdbunOaHnSE1CJv

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://processhol.sbs/api

https://p10tgrace.sbs/api

https://peepburry828.sbs/api

https://3xp3cts1aim.sbs/api

https://p3ar11fter.sbs/api

Targets

- Target
  
  1/lnstIIer.exe.vir
- Size
  
  1.9MB
- MD5
  
  4ddf69817ba556a3b22c83637299f785
- SHA1
  
  3549377cbd7939f48c8af1261c1679b284a70f78
- SHA256
  
  816b607b573f6a9d45b75c7bd30c84d33de192d077c6aefcc0f4ca48a3f572a6
- SHA512
  
  0737d228555cbfcfbfe49f7ce7456c6099d15dab11632cb53d88fdc3250aceffa868bd8e6d4a92a353a876a8fca815b0cc0a2f30357b3860f7721946fb6f998e
- SSDEEP
  
  49152:CiEB3Xk+M4aZulnVkK4cvsZgtIQ94blEQ0KFNG7DJ:Ciekp4aZoVkmYgdilEQ0KFNWJ
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2
- Target
  
  2/lnstIIer.exe.vir
- Size
  
  1.9MB
- MD5
  
  fcf6db76972b10bbf47248b3c3ac9c4a
- SHA1
  
  1e2616c0517c3cb03b0349c6323190157bc5785a
- SHA256
  
  4f0328cea2f80fc6581157769680d3b1349d21d326db06ba093bd9b0a099d342
- SHA512
  
  c8e07e29fd2aefcf5fc49ea41d4b58df6100d369bf45c16fbfc517bbd9367699aed49050c1a420d39874656e143ffc524af2368ef7c0e6ea149a24157ab71273
- SSDEEP
  
  49152:RiEB3Xk+M4aZulnVkK4cvsZgtIQ94blEQ0KFNG7D:Riekp4aZoVkmYgdilEQ0KFNW
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer

behavioral3

lummadiscoverystealer

behavioral4

lummadiscoverystealer