lumma | 1c335c0a507cefd5079b05ec8afb9c49d22da78ca0d5750ad70b7c313c1621bc | Triage

Sharing

General

Target

1c335c0a507cefd5079b05ec8afb9c49d22da78ca0d5750ad70b7c313c1621bc.zip
Size

1.9MB
Sample

250101-rxnjvs1man
MD5

62ba8324491035f19ded9fe60ab569f4
SHA1

2de7f572009a9748228408a9b5333f9d0310f345
SHA256

1c335c0a507cefd5079b05ec8afb9c49d22da78ca0d5750ad70b7c313c1621bc
SHA512

38166d1566eba81f55087c97186d8dd4dd138f7f78ba8b712f146bd225df1870530357a95b504cd6e3d46376af998d56608d0267fa7e178e66a391bf890c022b
SSDEEP

24576:/RCCniZinXEJ76DrROqM+eMu6dFGvnZLcSD6UaKbY7LP8/cD2jUlXhHoJMi:tE4rNoMu6dFG5cSD6UaKGQcV

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Extracted

Family

lumma

C2

https://abruptyopsn.shop/api

https://wholersorie.shop/api

https://framekgirus.shop/api

https://tirepublicerj.shop/api

https://noisycuttej.shop/api

https://rabidcowse.shop/api

https://cloudewahsj.shop/api

Targets

- Target
  
  1c335c0a507cefd5079b05ec8afb9c49d22da78ca0d5750ad70b7c313c1621bc.zip
- Size
  
  1.9MB
- MD5
  
  62ba8324491035f19ded9fe60ab569f4
- SHA1
  
  2de7f572009a9748228408a9b5333f9d0310f345
- SHA256
  
  1c335c0a507cefd5079b05ec8afb9c49d22da78ca0d5750ad70b7c313c1621bc
- SHA512
  
  38166d1566eba81f55087c97186d8dd4dd138f7f78ba8b712f146bd225df1870530357a95b504cd6e3d46376af998d56608d0267fa7e178e66a391bf890c022b
- SSDEEP
  
  24576:/RCCniZinXEJ76DrROqM+eMu6dFGvnZLcSD6UaKbY7LP8/cD2jUlXhHoJMi:tE4rNoMu6dFG5cSD6UaKGQcV
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer