lumma | 111a3a163d489dfd138d482335216ac16fe2808a36d4508d074696609f2ac6db

Target

111a3a163d489dfd138d482335216ac16fe2808a36d4508d074696609f2ac6db.zip
Size

563KB
Sample

241230-f67tbazkdz
MD5

956c90a95e6e640f24d2fa8e03dbb145
SHA1

6ed330ad442c53c05ce48b306be888a97bf8c88c
SHA256

111a3a163d489dfd138d482335216ac16fe2808a36d4508d074696609f2ac6db
SHA512

c7051a4881bad5eba5d0039c3cb7f5eb0cfb6506f585dc0985ccb527439768ac5075564be43486ded5cc59d1aa4690a5052399f99108af5500cdeb611f8a6d48
SSDEEP

12288:JYO6Dqzihouxpa+yWz2qRPmZqaKS6gfb3e82flYDXCOEO:OO6DThou2+y02TZqa97b3effyXXt

Score

10^/10

Malware Config

Extracted

Family

lumma

https://hummskitnj.buzz/api

https://cashfuzysao.buzz/api

https://appliacnesot.buzz/api

https://screwamusresz.buzz/api

https://inherineau.buzz/api

https://scentniej.buzz/api

https://rebuildeso.buzz/api

https://prisonyfork.buzz/api

https://mindhandru.buzz/api

Targets

- Target
  
  111a3a163d489dfd138d482335216ac16fe2808a36d4508d074696609f2ac6db.zip
- Size
  
  563KB
- MD5
  
  956c90a95e6e640f24d2fa8e03dbb145
- SHA1
  
  6ed330ad442c53c05ce48b306be888a97bf8c88c
- SHA256
  
  111a3a163d489dfd138d482335216ac16fe2808a36d4508d074696609f2ac6db
- SHA512
  
  c7051a4881bad5eba5d0039c3cb7f5eb0cfb6506f585dc0985ccb527439768ac5075564be43486ded5cc59d1aa4690a5052399f99108af5500cdeb611f8a6d48
- SSDEEP
  
  12288:JYO6Dqzihouxpa+yWz2qRPmZqaKS6gfb3e82flYDXCOEO:OO6DThou2+y02TZqa97b3effyXXt
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2