lumma | 028717d235b61c6ede892437f09d0cceaa5345268f787c00b58f27a082975670

General

Target

028717d235b61c6ede892437f09d0cceaa5345268f787c00b58f27a082975670.exe
Size

6.8MB
Sample

241122-hmyseasjfn
MD5

1565ba0f3f4b6f5500a3129845d24d73
SHA1

bf80be95d12efbd41548e395474151b7379949b0
SHA256

028717d235b61c6ede892437f09d0cceaa5345268f787c00b58f27a082975670
SHA512

2ddba128bbf923e05f32fa0cc16bab1276eb110224b1b52167f9eb53e424b2ab3db53b73cbcce443532a87ee8a280ca67d98001c0cb6ac1cb714863746db9d57
SSDEEP

196608:e741InG5lNniIbZg4TYc1vR31A4zur5MOjjDDTTVCjE/gsOt0G1O:e741ZbPH1AJCY/Urc

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://drawwyobstacw.sbs

https://condifendteu.sbs

https://ehticsprocw.sbs

https://vennurviot.sbs

https://resinedyw.sbs

https://enlargkiw.sbs

https://allocatinow.sbs

https://mathcucom.sbs

https://droppyrelivei.cfd

Targets

- Target
  
  028717d235b61c6ede892437f09d0cceaa5345268f787c00b58f27a082975670.exe
- Size
  
  6.8MB
- MD5
  
  1565ba0f3f4b6f5500a3129845d24d73
- SHA1
  
  bf80be95d12efbd41548e395474151b7379949b0
- SHA256
  
  028717d235b61c6ede892437f09d0cceaa5345268f787c00b58f27a082975670
- SHA512
  
  2ddba128bbf923e05f32fa0cc16bab1276eb110224b1b52167f9eb53e424b2ab3db53b73cbcce443532a87ee8a280ca67d98001c0cb6ac1cb714863746db9d57
- SSDEEP
  
  196608:e741InG5lNniIbZg4TYc1vR31A4zur5MOjjDDTTVCjE/gsOt0G1O:e741ZbPH1AJCY/Urc
Score

10^/10

discovery lumma stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Loads dropped DLL

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2