lumma | fd4cd0668aa23ea85fcc25ff8328e8d1018965ba9ec754818b6677f03abb0f24 | Triage

Sharing

General

Target

fd4cd0668aa23ea85fcc25ff8328e8d1018965ba9ec754818b6677f03abb0f24
Size

323KB
Sample

250103-amnnfavlaq
MD5

11ef4960441f5dd1dbe8c137fccd43a2
SHA1

6d522e053fba22694184a82e43e74e8752e214b4
SHA256

fd4cd0668aa23ea85fcc25ff8328e8d1018965ba9ec754818b6677f03abb0f24
SHA512

d0a593882e63f21686fb71644599652a1d3a8b0cb8e46b3b5a50d1abdad5353d2c5dd748453122cf389f1d2dcbf392b8ebfb3253791875ef4c051e6c35454bc9
SSDEEP

6144:+dFOWFLblRGGbx3WK45CLbrMQzo+IWzgxj2VJ:+dFFFvlRGyxGK45C7Mz+IKJ

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://sordid-snaked.cyou/api

https://awake-weaves.cyou/api

https://wrathful-jammy.cyou/api

https://debonairnukk.xyz/api

https://diffuculttan.xyz/api

https://effecterectz.xyz/api

https://deafeninggeh.biz/api

https://immureprech.biz/api

https://spellshagey.biz/api

Targets

- Target
  
  fd4cd0668aa23ea85fcc25ff8328e8d1018965ba9ec754818b6677f03abb0f24
- Size
  
  323KB
- MD5
  
  11ef4960441f5dd1dbe8c137fccd43a2
- SHA1
  
  6d522e053fba22694184a82e43e74e8752e214b4
- SHA256
  
  fd4cd0668aa23ea85fcc25ff8328e8d1018965ba9ec754818b6677f03abb0f24
- SHA512
  
  d0a593882e63f21686fb71644599652a1d3a8b0cb8e46b3b5a50d1abdad5353d2c5dd748453122cf389f1d2dcbf392b8ebfb3253791875ef4c051e6c35454bc9
- SSDEEP
  
  6144:+dFOWFLblRGGbx3WK45CLbrMQzo+IWzgxj2VJ:+dFFFvlRGyxGK45C7Mz+IKJ
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer