Overview

overview

10

Static

static

3

Set-up.exe

windows7-x64

10

Set-up.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d6ff2c3d7f71fa5cc485383e9fee36034db70f7969ef3c9c04230b98cc92d304.zip

  • Size

    5.3MB

  • Sample

    241230-f7lx8szlgm

  • MD5

    8fa95455c049f274c1a5bb463519513f

  • SHA1

    5619ac4d4e283caa19c00fa790bbd283e4d1560f

  • SHA256

    d6ff2c3d7f71fa5cc485383e9fee36034db70f7969ef3c9c04230b98cc92d304

  • SHA512

    3e070d3df7285aa16d6c8de6ca9a3fbd3b87f32543779dddf14b2f09e37cd60ab218b196bfaf65afbfb2fce0d832fb168d5c64784ab9e41abfa681f337b9be39

  • SSDEEP

    98304:kmf2JIv4XaEQDIb0i9n1ur+dG1Q2a3nZhH1+wGYn1q7hUOwyaH:PfIIv4XaEQDIb0ih1un1Q2OZhVvGY1Cw

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://sordid-snaked.cyou/api

https://awake-weaves.cyou/api

https://wrathful-jammy.cyou/api

https://debonairnukk.xyz/api

https://diffuculttan.xyz/api

https://effecterectz.xyz/api

https://deafeninggeh.biz/api

https://immureprech.biz/api

Targets

    • Target

      Set-up.exe

    • Size

      879.7MB

    • MD5

      3b7cd11803b6cdce52052b00b49de500

    • SHA1

      b073c347852b77de497c616e997df70a37908d32

    • SHA256

      ee171f16b314f09275dbeb4c9fc1a349ce32129ba4e08f4c4a6e792d5cde35f6

    • SHA512

      c9e08b9b85b5fcfd67f83c08a3be7f6b989fc87ab6d40769a35a7fc08aeadff7c45b71b3576fd79615547b57cb21cef5d71cb848ae09b456bef3810279429a7e

    • SSDEEP

      98304:Mtiw+Q3EluknNJWLhL9L/PCldf/ppct/YjEj7xzrbSyWod:yiw+Wth8f/M/YG3bSyH

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks