lumma | ac5a0e743697c23dcbcb7ca96827b36fb44796fea27aaab38d13f68e8f3e0c76 | Triage

Sharing

General

Target

ac5a0e743697c23dcbcb7ca96827b36fb44796fea27aaab38d13f68e8f3e0c76.exe
Size

529KB
Sample

241231-wmeanasjhs
MD5

9fd483e06841b8911f733c121984bc49
SHA1

0a6fa4ce432d8e4bcbd1d494aed83eae92eb9b36
SHA256

ac5a0e743697c23dcbcb7ca96827b36fb44796fea27aaab38d13f68e8f3e0c76
SHA512

f8c9aa67813e0975fc472a69783ed9085f6007417d636f1423efaa032e226186bdd4eb438f8bbb668cc568c55f29fc214153fff1684e47eee45bd2e98a5315e9
SSDEEP

12288:puB9du8NOZx84E5YoSCa5S69y8+Y87E2xraC9mj5tjduXyOM8:69du88Zx8VACaE6HNITx2CK5BfOB

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

Targets

- Target
  
  ac5a0e743697c23dcbcb7ca96827b36fb44796fea27aaab38d13f68e8f3e0c76.exe
- Size
  
  529KB
- MD5
  
  9fd483e06841b8911f733c121984bc49
- SHA1
  
  0a6fa4ce432d8e4bcbd1d494aed83eae92eb9b36
- SHA256
  
  ac5a0e743697c23dcbcb7ca96827b36fb44796fea27aaab38d13f68e8f3e0c76
- SHA512
  
  f8c9aa67813e0975fc472a69783ed9085f6007417d636f1423efaa032e226186bdd4eb438f8bbb668cc568c55f29fc214153fff1684e47eee45bd2e98a5315e9
- SSDEEP
  
  12288:puB9du8NOZx84E5YoSCa5S69y8+Y87E2xraC9mj5tjduXyOM8:69du88Zx8VACaE6HNITx2CK5BfOB
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer