lumma | f6f2d3bb497e31dcc88016eaedd6a3141993233bf5b7a8e14f666eb93baabcb4 | Triage

Sharing

General

Target

Exlaun1-2-5-0 (1221).zip
Size

18.8MB
Sample

241229-2e3k6syncv
MD5

2f9dba302634818188600b03dfbddf49
SHA1

b70a7b48afd5e7cadf9caa4b150bc9fa6384a51c
SHA256

f6f2d3bb497e31dcc88016eaedd6a3141993233bf5b7a8e14f666eb93baabcb4
SHA512

71451e2cd9b79b38f35312276ffdb5c4a498c9bebb8dee090c25b97f93c10903a1f459ef15a653ea318ca5a00fcc3eec8236f96ce8784e1415ccf6708e5dbbc7
SSDEEP

393216:oSWyIU3uio3qVM/y5dRm0TI4/XDixBmH4sdjPkGSMHf9O//+LDuxfWd:oSWdqui1N5dRm0TfPOxUHLd4G/k//+ma

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://hummskitnj.buzz/api

https://cashfuzysao.buzz/api

https://appliacnesot.buzz/api

https://screwamusresz.buzz/api

https://inherineau.buzz/api

https://scentniej.buzz/api

https://rebuildeso.buzz/api

https://prisonyfork.buzz/api

Targets

- Target
  
  Exlaun1-2-5-0.exe
- Size
  
  906.1MB
- MD5
  
  53d8b2ff54f57cb221ebb0608db64b44
- SHA1
  
  2183ee379b892aea71c40b964ebf8efc2b64182e
- SHA256
  
  db6d603171523d28a434855ccc4b1b5124d38b581cd0076e9d555b9de04af9b5
- SHA512
  
  f9c5e17da79bf495783f6b06f1bfbf26420d089570e53335b0253b383559e624f8b751f6645c0b760f5a833e8609bd622fa237847e69a7d9831fa97f7d4f36f8
- SSDEEP
  
  393216:P4yW+wtrXzzwgCh0IS+wtrXzzwgCh0Ia+wtrXzzwgCh0IJ:P4y9CrXzEgupCrXzEguhCrXzEguJ
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer