lumma | a2a2fa900f453f24a9bab2188d4f831be613c84191494b50fb6522af19e4f169 | Triage

Sharing

General

Target

a2a2fa900f453f24a9bab2188d4f831be613c84191494b50fb6522af19e4f169
Size

7.5MB
Sample

241123-ca85qavmfw
MD5

2ecb2b14a4050aa62a10231a8fff056f
SHA1

94d9c850d5086454e37a94b2e63a39d218406f60
SHA256

a2a2fa900f453f24a9bab2188d4f831be613c84191494b50fb6522af19e4f169
SHA512

f3a0c36dc2dde1dac59f1f2cc1e3bd4d71ea639c8161b37b23560db45870c0425d2f63adc2a57da12e5876b92bf6c044a3ee8744b26372ba10565796183ea890
SSDEEP

49152:Mn4yvqnGtmN5vpp3FiA7P27lyZAb9ly76tcPlRlrHm/JdY+RKM1GcJkoUXPsUXPS:MqTvLvrecZy9ly7T983kcOJk

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://gentlewave.shop/api

Targets

- Target
  
  a2a2fa900f453f24a9bab2188d4f831be613c84191494b50fb6522af19e4f169
- Size
  
  7.5MB
- MD5
  
  2ecb2b14a4050aa62a10231a8fff056f
- SHA1
  
  94d9c850d5086454e37a94b2e63a39d218406f60
- SHA256
  
  a2a2fa900f453f24a9bab2188d4f831be613c84191494b50fb6522af19e4f169
- SHA512
  
  f3a0c36dc2dde1dac59f1f2cc1e3bd4d71ea639c8161b37b23560db45870c0425d2f63adc2a57da12e5876b92bf6c044a3ee8744b26372ba10565796183ea890
- SSDEEP
  
  49152:Mn4yvqnGtmN5vpp3FiA7P27lyZAb9ly76tcPlRlrHm/JdY+RKM1GcJkoUXPsUXPS:MqTvLvrecZy9ly7T983kcOJk
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer