Overview

overview

10

Static

static

3

dd22007589...8N.exe

windows7-x64

10

dd22007589...8N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dd2200758962d85a31ef103ea1c8082a8bd3f6d44cda3f97e7320d8421d07d58N.exe

  • Size

    505KB

  • Sample

    241127-lb9mbatqeq

  • MD5

    fd003018d6b23b54d4548e4d21af1200

  • SHA1

    53b7966c44e5593171a121ee22d1ac6d1edc482e

  • SHA256

    dd2200758962d85a31ef103ea1c8082a8bd3f6d44cda3f97e7320d8421d07d58

  • SHA512

    6b43195c88c79bcd5259d0e080434de79a072ee1c10f171fd1f4c95df26b178509f6efdc8c48140ef5ddef1e79a4e8c0123a5014ac3d02b96be101cb7ee79935

  • SSDEEP

    12288:8uYPABqG93bG2zYH13IYaMbY5PprGJmcUqBgwNhGiFv5Hx:NYPABNLGTV33aMbeLgg0Fxx

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://powerful-avoids.sbs

https://motion-treesz.sbs

https://disobey-curly.sbs

https://leg-sate-boat.sbs

https://story-tense-faz.sbs

https://blade-govern.sbs

https://occupy-blushi.sbs

https://frogs-severz.sbs

https://property-imper.sbs

Targets

    • Target

      dd2200758962d85a31ef103ea1c8082a8bd3f6d44cda3f97e7320d8421d07d58N.exe

    • Size

      505KB

    • MD5

      fd003018d6b23b54d4548e4d21af1200

    • SHA1

      53b7966c44e5593171a121ee22d1ac6d1edc482e

    • SHA256

      dd2200758962d85a31ef103ea1c8082a8bd3f6d44cda3f97e7320d8421d07d58

    • SHA512

      6b43195c88c79bcd5259d0e080434de79a072ee1c10f171fd1f4c95df26b178509f6efdc8c48140ef5ddef1e79a4e8c0123a5014ac3d02b96be101cb7ee79935

    • SSDEEP

      12288:8uYPABqG93bG2zYH13IYaMbY5PprGJmcUqBgwNhGiFv5Hx:NYPABNLGTV33aMbeLgg0Fxx

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks