lumma | 0cb7c6c08aad0accd2b8f565c687fe3f8b4743cfe20a3154a69c397d3992cb84 | Triage

Sharing

General

Target

Insomnia (2222).zip
Size

115.6MB
Sample

241229-2h9tnaypaz
MD5

7c94d7d52ac279bf8ef8a19575c76b94
SHA1

5d7b8f497842b53e8932f26156a5d2180e594294
SHA256

0cb7c6c08aad0accd2b8f565c687fe3f8b4743cfe20a3154a69c397d3992cb84
SHA512

3c2e7c0c24c4427f7bc8b67622679c89848d0f98bb2dda37e375c920a9c3d12b1d2df494744fa2097239a996dcf67bf8b193f382dcfb9cda65ef0409248ca335
SSDEEP

3145728:diJGXiiPkr93oxjaD/LyP86P4HOiFfnYTcawx6D+2:djiOs4do/LyPTPwxYnS6DR

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://abruptyopsn.shop/api

https://wholersorie.shop/api

https://framekgirus.shop/api

https://tirepublicerj.shop/api

https://noisycuttej.shop/api

https://rabidcowse.shop/api

https://cloudewahsj.shop/api

Targets

- Target
  
  Insomnia.exe
- Size
  
  782.1MB
- MD5
  
  7f4c65bd8ab11312c444491a82cfa1bd
- SHA1
  
  dc3546c2cc53bd81fcfca0158533792b2c5e24e3
- SHA256
  
  f442b51e2a3aeeb3aeb37c6f87e39400e2c62e98362982bb699ba9aef96f3676
- SHA512
  
  4041bfdb2dde4d2532f5fd6ffdd8a4d60834606394c41d780205b19ea0f97159bafc046dd6a4f7497b01372fb9f908959bbffd2e529f04ba71daeba368dd5ecc
- SSDEEP
  
  98304:c/G9YeIkhc5NjJACJoL1NloCM/KZHstOPKD8NBM432oh9q1ObUe8/vdvc9cMc9cD:cAYcDQ0TGCxuDqFjXqOb03dm
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer