lumma | b49c6bd934440680728e215db4038cb2d62011952404e0bd8fee97db633d2e9b | Triage

Sharing

General

Target

lnstalIer_0ffiсi@l_3.11.4.rar
Size

144.0MB
Sample

241231-xw5dwaxkdn
MD5

59de0f385ae983488b8293fe7d9ad616
SHA1

c53b849bd5334931b1cc2f96e232fbe8ed54d752
SHA256

b49c6bd934440680728e215db4038cb2d62011952404e0bd8fee97db633d2e9b
SHA512

a9cab7b0c16b98d68cd030cba1deef61be388f5c4fa021e822d586d3de4ef7cc29715ecff06eb794415e85af8b8a881eed672ed7db54f1ff8d15caf3b9e93872
SSDEEP

3145728:7envcxNzRf13m1/nCaaEjaEUOiB4oXcCz1AkbH5JBJZ72vO:7AvcxZbW1/nhaW7UaoXh/lv72W

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Targets

- Target
  
  lnstalIer_0ffiсi@l_3.11.4.rar
- Size
  
  144.0MB
- MD5
  
  59de0f385ae983488b8293fe7d9ad616
- SHA1
  
  c53b849bd5334931b1cc2f96e232fbe8ed54d752
- SHA256
  
  b49c6bd934440680728e215db4038cb2d62011952404e0bd8fee97db633d2e9b
- SHA512
  
  a9cab7b0c16b98d68cd030cba1deef61be388f5c4fa021e822d586d3de4ef7cc29715ecff06eb794415e85af8b8a881eed672ed7db54f1ff8d15caf3b9e93872
- SSDEEP
  
  3145728:7envcxNzRf13m1/nCaaEjaEUOiB4oXcCz1AkbH5JBJZ72vO:7AvcxZbW1/nhaW7UaoXh/lv72W
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer