lumma | b1a1857961ba08de06cec82fe42e127a32f806f70091e2bcedade2011d929215 | Triage

Sharing

General

Target

b1a1857961ba08de06cec82fe42e127a32f806f70091e2bcedade2011d929215
Size

1.2MB
Sample

250103-aak2sa1kcz
MD5

0c507936a39a0a5df120122c262a8c4b
SHA1

c6104abb4a5b8647821e5ba2e7be7fcb1e60fc5a
SHA256

b1a1857961ba08de06cec82fe42e127a32f806f70091e2bcedade2011d929215
SHA512

d4227881c236f1011014f4afd6a0bfde00c34199805dc11feda16ef2e92ee65d6833b637f86a69e04842533358eee76e18ca8f8b7405d9933f085dad4b52ddbd
SSDEEP

24576:k9Z+6gpj5uvicCIiSksBA1PM7sm5Y4nNahbmUUsnjOZfxm355WBCIgxVThEHxDSF:GGpj5uvK1PM7sm5Y4nNahbmUUsnjOZfa

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Extracted

Family

lumma

C2

https://abruptyopsn.shop/api

https://wholersorie.shop/api

https://framekgirus.shop/api

https://tirepublicerj.shop/api

https://noisycuttej.shop/api

https://rabidcowse.shop/api

https://cloudewahsj.shop/api

Targets

- Target
  
  b1a1857961ba08de06cec82fe42e127a32f806f70091e2bcedade2011d929215
- Size
  
  1.2MB
- MD5
  
  0c507936a39a0a5df120122c262a8c4b
- SHA1
  
  c6104abb4a5b8647821e5ba2e7be7fcb1e60fc5a
- SHA256
  
  b1a1857961ba08de06cec82fe42e127a32f806f70091e2bcedade2011d929215
- SHA512
  
  d4227881c236f1011014f4afd6a0bfde00c34199805dc11feda16ef2e92ee65d6833b637f86a69e04842533358eee76e18ca8f8b7405d9933f085dad4b52ddbd
- SSDEEP
  
  24576:k9Z+6gpj5uvicCIiSksBA1PM7sm5Y4nNahbmUUsnjOZfxm355WBCIgxVThEHxDSF:GGpj5uvK1PM7sm5Y4nNahbmUUsnjOZfa
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer