lumma | 97fe7aead7152b42533a756c198fe6d565e2030635a11df90f11c083b181fcbe | Triage

Sharing

General

Target

97fe7aead7152b42533a756c198fe6d565e2030635a11df90f11c083b181fcbe
Size

9.3MB
Sample

241120-nd46qawgmm
MD5

7451577e996cbe6fd372088e4d75af2d
SHA1

3037c80ff4f9350be85bc889bb75494e5f016cef
SHA256

97fe7aead7152b42533a756c198fe6d565e2030635a11df90f11c083b181fcbe
SHA512

5c8196ba456e6dbdf9825b332f1924e60a290073974bc8bd4d3faf65bcdbe1a2386a30674d387a2737b225fd9b5e1b3d2a735edce9a240a0dfb6dae8cbb7b0da
SSDEEP

196608:uzIQxGt4fAgl6WswvpHN6+6LTDYy+OFli:u1RpHN6+yTDYydi

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://foresttrail.shop/api

Targets

- Target
  
  97fe7aead7152b42533a756c198fe6d565e2030635a11df90f11c083b181fcbe
- Size
  
  9.3MB
- MD5
  
  7451577e996cbe6fd372088e4d75af2d
- SHA1
  
  3037c80ff4f9350be85bc889bb75494e5f016cef
- SHA256
  
  97fe7aead7152b42533a756c198fe6d565e2030635a11df90f11c083b181fcbe
- SHA512
  
  5c8196ba456e6dbdf9825b332f1924e60a290073974bc8bd4d3faf65bcdbe1a2386a30674d387a2737b225fd9b5e1b3d2a735edce9a240a0dfb6dae8cbb7b0da
- SSDEEP
  
  196608:uzIQxGt4fAgl6WswvpHN6+6LTDYy+OFli:u1RpHN6+yTDYydi
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer