Overview

overview

10

Static

static

3

1732209192...gs.exe

windows10-ltsc 2021-x64

10

1732209192...gs.exe

windows11-21h2-x64

7

Resubmissions

12-02-2025 18:35

250212-w8q7caslem 10

21-11-2024 17:22

241121-vxkpratckb

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1732209192.0855865_wild things.bin

  • Size

    8.2MB

  • Sample

    241121-vxkpratckb

  • MD5

    8ed8ec80c361562570763ffe7ad288e0

  • SHA1

    35b0d6ea2db03fef08242cdfb917be7d16ec6838

  • SHA256

    2b119ee66db938a37c5bccb33231d6191f4133f85d7821b528da472ad956f074

  • SHA512

    830ddd06b08d36991c732106ea51f52b28d7452d5a0c0d212b0820d918bc0ec3660f4bcf65e3357d13d937b987f39dffdc6cfea7120ac8a0b78a6b98e6a0a694

  • SSDEEP

    196608:IMyy89Q/hEuO1DYBy/el2lGkQCvhw2db/dd+iK2wR/zkx:IMyvS/aJZjQCvhw6b/dd+iKzo

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://happyjourney.shop/api

Targets

    • Target

      1732209192.0855865_wild things.bin

    • Size

      8.2MB

    • MD5

      8ed8ec80c361562570763ffe7ad288e0

    • SHA1

      35b0d6ea2db03fef08242cdfb917be7d16ec6838

    • SHA256

      2b119ee66db938a37c5bccb33231d6191f4133f85d7821b528da472ad956f074

    • SHA512

      830ddd06b08d36991c732106ea51f52b28d7452d5a0c0d212b0820d918bc0ec3660f4bcf65e3357d13d937b987f39dffdc6cfea7120ac8a0b78a6b98e6a0a694

    • SSDEEP

      196608:IMyy89Q/hEuO1DYBy/el2lGkQCvhw2db/dd+iK2wR/zkx:IMyvS/aJZjQCvhw6b/dd+iKzo

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Enumerates processes with tasklist

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks