lumma | 2ac6fbd8a00c52b7b8a6c761584e838d94a29dfd2f846ebbb435ce8dddc61f74 | Triage

Submit
Reports

Overview

overview

Static

static

1

nokeyfunction.zip

windows11-21h2-x64

Sharing

General

Target

nokeyfunction.zip
Size

13.6MB
Sample

250102-2a1k1sxras
MD5

12d89813d1e437acf514f838d480bf5d
SHA1

c0b879c8e25541a6706464c054df0fe72f67afee
SHA256

2ac6fbd8a00c52b7b8a6c761584e838d94a29dfd2f846ebbb435ce8dddc61f74
SHA512

cceb5ea5050c2bfd8e1f49a1f2f047b94828786552bf0bc3d073fdcc792f9819327e57902f43c54c42c92e840c880f24511aa6d72a42c6e1c6b44c2ac19080f9
SSDEEP

196608:PHudXWVQ26vYkc+7/CNc2xXcKZZQPt1nmlb/Ue3EdtvV7NebhmQIKzGXnS7U+H6:/ee6wkH7/CzNcVVRI3EdrNe3IAqSa

Score

10^/10

lumma discovery stealer

Static task

static1

Behavioral task

behavioral1

Sample

nokeyfunction.zip

Resource

win11-20241007-en

lumma discovery stealer

windows11-21h2-x64

15 signatures

150 seconds

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Targets

- Target
  
  nokeyfunction.zip
- Size
  
  13.6MB
- MD5
  
  12d89813d1e437acf514f838d480bf5d
- SHA1
  
  c0b879c8e25541a6706464c054df0fe72f67afee
- SHA256
  
  2ac6fbd8a00c52b7b8a6c761584e838d94a29dfd2f846ebbb435ce8dddc61f74
- SHA512
  
  cceb5ea5050c2bfd8e1f49a1f2f047b94828786552bf0bc3d073fdcc792f9819327e57902f43c54c42c92e840c880f24511aa6d72a42c6e1c6b44c2ac19080f9
- SSDEEP
  
  196608:PHudXWVQ26vYkc+7/CNc2xXcKZZQPt1nmlb/Ue3EdtvV7NebhmQIKzGXnS7U+H6:/ee6wkH7/CzNcVVRI3EdrNe3IAqSa
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

© 2018-2025

Terms | Privacy