lumma | c29aa20740e453ad22c74ea8acd3a04fbc71fe607c3c70493b3aaba3c124235c | Triage

Sharing

General

Target

begit.zip
Size

4.1MB
Sample

241126-1mkvna1nbv
MD5

09a4b2535a791e88b4ebfb0563df5b7e
SHA1

b41188a7194307e374f6a7b4425b157a0947cedd
SHA256

c29aa20740e453ad22c74ea8acd3a04fbc71fe607c3c70493b3aaba3c124235c
SHA512

1a56fb8cacca047999fbd4d39d1c273cf1325bf944e59f3122ff8a00cb15732f27c7a0c25820e39236bb5ffca756f075926bb92bb2c525336d4013ac28037893
SSDEEP

98304:H9eR9nYHES0q8Yfk/zwG0GAn5Xv08+xB7tOkCvs2bDOSuDUWRZ7pgR1hcs:H9eLnYHE0fk/bVOf4xKxmSu4WRZ7pg9H

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://powerful-avoids.sbs

https://motion-treesz.sbs

https://disobey-curly.sbs

https://leg-sate-boat.sbs

https://story-tense-faz.sbs

https://blade-govern.sbs

https://occupy-blushi.sbs

https://frogs-severz.sbs

https://humdrum-screw.cyou

Targets

- Target
  
  begit.zip
- Size
  
  4.1MB
- MD5
  
  09a4b2535a791e88b4ebfb0563df5b7e
- SHA1
  
  b41188a7194307e374f6a7b4425b157a0947cedd
- SHA256
  
  c29aa20740e453ad22c74ea8acd3a04fbc71fe607c3c70493b3aaba3c124235c
- SHA512
  
  1a56fb8cacca047999fbd4d39d1c273cf1325bf944e59f3122ff8a00cb15732f27c7a0c25820e39236bb5ffca756f075926bb92bb2c525336d4013ac28037893
- SSDEEP
  
  98304:H9eR9nYHES0q8Yfk/zwG0GAn5Xv08+xB7tOkCvs2bDOSuDUWRZ7pgR1hcs:H9eLnYHE0fk/bVOf4xKxmSu4WRZ7pg9H
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer