lumma | 8d81b0691c4e8ae1409da1a1ada1deba56ec3d02b34f589060e68981342f2f7b | Triage

Sharing

General

Target

2025-01-02_8e8a79b7c63dd8b18a88635001ce9760_frostygoop_poet-rat_snatch
Size

13.9MB
Sample

250102-w5t4tstpdr
MD5

8e8a79b7c63dd8b18a88635001ce9760
SHA1

f2946b5f1c84a9f3a54872d22be04bb22619dcb2
SHA256

8d81b0691c4e8ae1409da1a1ada1deba56ec3d02b34f589060e68981342f2f7b
SHA512

5e89d07efa61e349e471a9131a8762bc0441f33830940615086afb6543c76d13cfb3b8085ec735f7bfe0efabe5c6a6bd97a39c6342ef021c319b20d5c00f23a9
SSDEEP

98304:a+pGvPn+Btinz5dYBxpRgWu03PI3zwupVa4uKG1rh0CSk76h:1addYBx+Xc43G1rhoNh

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

Targets

- Target
  
  2025-01-02_8e8a79b7c63dd8b18a88635001ce9760_frostygoop_poet-rat_snatch
- Size
  
  13.9MB
- MD5
  
  8e8a79b7c63dd8b18a88635001ce9760
- SHA1
  
  f2946b5f1c84a9f3a54872d22be04bb22619dcb2
- SHA256
  
  8d81b0691c4e8ae1409da1a1ada1deba56ec3d02b34f589060e68981342f2f7b
- SHA512
  
  5e89d07efa61e349e471a9131a8762bc0441f33830940615086afb6543c76d13cfb3b8085ec735f7bfe0efabe5c6a6bd97a39c6342ef021c319b20d5c00f23a9
- SSDEEP
  
  98304:a+pGvPn+Btinz5dYBxpRgWu03PI3zwupVa4uKG1rh0CSk76h:1addYBx+Xc43G1rhoNh
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer