lumma | e51b24decb27239bd4b66e8451435fafb485053332f21763fdb0f0b3eb787a7a

General

Target

setup.zip
Size

2.7MB
Sample

241230-wrfpaasldr
MD5

aeada5fa782f52e3949f186d34b524aa
SHA1

5e83fa1288aadbeaebfd066c57a78c657796ff9c
SHA256

e51b24decb27239bd4b66e8451435fafb485053332f21763fdb0f0b3eb787a7a
SHA512

011535beb20bc07991bc2a8bc0ae8bb3b13020727db6c66039f2bbac0b31218876af48acf4135aedacc6e43ee8c8304dee8db4f929943fcd3474106e44ad2def
SSDEEP

24576:92o1Ipdd2o/s9ShYf6ejzPLUO1MNhm0CCCjYZmUBngOTOa4ge5F:Uo1ILIo/yCYp/hCC84UbOlgGF

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://hummskitnj.buzz/api

https://cashfuzysao.buzz/api

https://appliacnesot.buzz/api

https://screwamusresz.buzz/api

https://inherineau.buzz/api

https://scentniej.buzz/api

https://rebuildeso.buzz/api

https://prisonyfork.buzz/api

Targets

- Target
  
  setup.exe
- Size
  
  670.1MB
- MD5
  
  e159fb34d3a1b64b0f2facb549429a2a
- SHA1
  
  ff52f8826feb20b0d5e9afcf0c7abcd807e5d19e
- SHA256
  
  0b81e39ed927ac14b2db5e21adb62e0278107fc1909766932df15ff687715df7
- SHA512
  
  530184fe0286fc4eed6a36ce1732d31920e7c00b6a035b4da0da737c6f78d39a8da5c2e4aa503333fabb36a00c932c7c91ae8ad52842e83a50eecf4d9be43f62
- SSDEEP
  
  49152:kuGsknvHDK8YcrWaCyqp1uw/0L5HiwSX1W//Jg9:/GsknvHe8Yzacp50LpSX1W//Jg9
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2