lumma | 4cd8f0f35099c08c08d018cdf3c96d13655e7d034ff4fa11b59f9146c5272bdd | Triage

Sharing

General

Target

4cd8f0f35099c08c08d018cdf3c96d13655e7d034ff4fa11b59f9146c5272bdd.exe
Size

23.9MB
Sample

241230-cn68aavkhq
MD5

746319c0183ec5bb360f3194b3bd43ec
SHA1

011475d452a291cc9fad14f78572c9eacb479130
SHA256

4cd8f0f35099c08c08d018cdf3c96d13655e7d034ff4fa11b59f9146c5272bdd
SHA512

14b820fbac607cfb19b606afbac502cce5f259675d8ba02746626c290f737837a374634bf5cb6d5bcf4f9853e4588b3d0c5ddc99c13d67fc3e1fc7bef68a3d25
SSDEEP

49152:J0JEHWJ65cZrFctPdSHdA8Ui4oFcU/sy4cN4EVj5OTVgcKPd3:5W80yEwoFITOcKl

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

Targets

- Target
  
  4cd8f0f35099c08c08d018cdf3c96d13655e7d034ff4fa11b59f9146c5272bdd.exe
- Size
  
  23.9MB
- MD5
  
  746319c0183ec5bb360f3194b3bd43ec
- SHA1
  
  011475d452a291cc9fad14f78572c9eacb479130
- SHA256
  
  4cd8f0f35099c08c08d018cdf3c96d13655e7d034ff4fa11b59f9146c5272bdd
- SHA512
  
  14b820fbac607cfb19b606afbac502cce5f259675d8ba02746626c290f737837a374634bf5cb6d5bcf4f9853e4588b3d0c5ddc99c13d67fc3e1fc7bef68a3d25
- SSDEEP
  
  49152:J0JEHWJ65cZrFctPdSHdA8Ui4oFcU/sy4cN4EVj5OTVgcKPd3:5W80yEwoFITOcKl
Score

10^/10

discovery lumma stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lummadiscoverystealer