lumma | 32b9b6380042b4d1d690c352cd973eedf3d916b38e2d29245508a6fed834ba5d

General

Target

2024-11-19_91557b88ab1c9822a7385a3a73d0728e_frostygoop_poet-rat_snatch
Size

19.1MB
Sample

241119-qwrz8a1paj
MD5

91557b88ab1c9822a7385a3a73d0728e
SHA1

4e172dec0180b77d28c64282dbfbc2e61c4125a8
SHA256

32b9b6380042b4d1d690c352cd973eedf3d916b38e2d29245508a6fed834ba5d
SHA512

78e7ace5ae877f60c16c6f8d01d8649ddb1d1090ce71880c6b61f65aed9d933b01287e468fba838feba9c1f9bda140ca4fca6c1b6a4ccd4b4013f098a2f29cdf
SSDEEP

98304:VXZV2lM1tyUNHO2lOgbnDBvTp/ZLiS2gEYsz/1oYfG+5qZufnbQOE133:HV2pUVVjLiS23oYhnbHg

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://servicedny.site

https://authorisev.site

https://faulteyotk.site

https://dilemmadu.site

https://contemteny.site

https://goalyfeastz.site

https://opposezmny.site

https://seallysl.site

https://pastelyki.cyou

Targets

- Target
  
  2024-11-19_91557b88ab1c9822a7385a3a73d0728e_frostygoop_poet-rat_snatch
- Size
  
  19.1MB
- MD5
  
  91557b88ab1c9822a7385a3a73d0728e
- SHA1
  
  4e172dec0180b77d28c64282dbfbc2e61c4125a8
- SHA256
  
  32b9b6380042b4d1d690c352cd973eedf3d916b38e2d29245508a6fed834ba5d
- SHA512
  
  78e7ace5ae877f60c16c6f8d01d8649ddb1d1090ce71880c6b61f65aed9d933b01287e468fba838feba9c1f9bda140ca4fca6c1b6a4ccd4b4013f098a2f29cdf
- SSDEEP
  
  98304:VXZV2lM1tyUNHO2lOgbnDBvTp/ZLiS2gEYsz/1oYfG+5qZufnbQOE133:HV2pUVVjLiS23oYhnbHg
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2