General

  • Target

    [1.1.0]-Aрр-UNC-x64.zip

  • Size

    25.2MB

  • Sample

    241229-yalkbawlat

  • MD5

    df7d3ee70d14332f8c8dfe6af46e49de

  • SHA1

    ba4a781ce19c9b0b76e837944a2decd59e451156

  • SHA256

    5c47fa13a8c62c1f02c00fef586c7c39564f46fc997fda115859f5239d25eb8a

  • SHA512

    5187835060d5fa067da12539be96551316050b419eee8ca91e28c10e0bfe4971641d7d9bdfc835d437b9df65d21998162555180e8b8da713addd2b0c67b4f69a

  • SSDEEP

    786432:FcpiIjX76DuIu3szOnkmSqwNkGtR7Af+nwWPGMg:FcIIzmKIu3sz4SFNk0JMmDGZ

Malware Config

Extracted

Family

lumma

C2

https://hummskitnj.buzz/api

https://cashfuzysao.buzz/api

https://appliacnesot.buzz/api

https://screwamusresz.buzz/api

https://inherineau.buzz/api

https://scentniej.buzz/api

https://rebuildeso.buzz/api

https://prisonyfork.buzz/api

https://begguinnerz.biz/api

Extracted

Family

lumma

C2

https://begguinnerz.biz/api

Targets

    • Target

      [1.1.0]-Aрр-UNC-x64.zip

    • Size

      25.2MB

    • MD5

      df7d3ee70d14332f8c8dfe6af46e49de

    • SHA1

      ba4a781ce19c9b0b76e837944a2decd59e451156

    • SHA256

      5c47fa13a8c62c1f02c00fef586c7c39564f46fc997fda115859f5239d25eb8a

    • SHA512

      5187835060d5fa067da12539be96551316050b419eee8ca91e28c10e0bfe4971641d7d9bdfc835d437b9df65d21998162555180e8b8da713addd2b0c67b4f69a

    • SSDEEP

      786432:FcpiIjX76DuIu3szOnkmSqwNkGtR7Af+nwWPGMg:FcIIzmKIu3sz4SFNk0JMmDGZ

    Score
    10/10
    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    • Lumma family

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks