lumma | cd2db72636e507c06940c377387152775ebef24162b5d5c04d36275688c12de3 | Triage

Sharing

General

Target

cd2db72636e507c06940c377387152775ebef24162b5d5c04d36275688c12de3.zip
Size

17.1MB
Sample

241230-f7j4mszlcz
MD5

439c5f25dff427c5bbdb81bc8e808bf4
SHA1

65af04d24158a590efd16ed1d293087bf7b5a2e2
SHA256

cd2db72636e507c06940c377387152775ebef24162b5d5c04d36275688c12de3
SHA512

70a986dc80be0f8c946097d25f51de3c6b412061bdae57e9093e98e1865e72df391be331b157b9aface285f402f4c25658774e1dfc256f0ee19b03e3f8084614
SSDEEP

393216:0KBD59jG6PL4c1lNMY/UoaHkqaVncQoJxRGipU6pIfecu77RZoXe:0KBHG6zTyKaInxoXRZTEecOzAe

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://offybirhtdi.sbs/api

https://activedomest.sbs/api

https://arenbootk.sbs/api

https://mediavelk.sbs/api

https://definitib.sbs/api

https://elaboretib.sbs/api

https://strikebripm.sbs/api

https://ostracizez.sbs/api

Targets

- Target
  
  desde mi cielo 1080p torrent.exe
- Size
  
  810.0MB
- MD5
  
  936a667975ad732b9559bca4fede3148
- SHA1
  
  2b85c19176ab5777355e05cf2a3bb7c83e0e3ea9
- SHA256
  
  ec3b6fd0fb2cf71a999bd66f47ad392780f735344a3a7856e874420463a80793
- SHA512
  
  20ddb8c49283a309b11775d0c52cd726f885cd33a0f7a2af16c89c096a288db1d7f01ec8df5c94cd8f9db069949b84c4cdd0d3857b0c42d23e6b7ac059a8bff3
- SSDEEP
  
  786432:z2ja5CDqNKngw0ll1apGvuhNgrGnIymt3:iu050llAF5mt3
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer