lumma | 1e43362597cdf2d0f61ab555a4069b7c788ab135d45bf76898adc87f158a4715

General

Target

Release-x86.zip
Size

19.7MB
Sample

250103-gy1kpsvpak
MD5

db1a46d6a06fdbb2a8b2e2a857c3816a
SHA1

c4817795ba83e1e4ce5d62355b2417177de0e489
SHA256

1e43362597cdf2d0f61ab555a4069b7c788ab135d45bf76898adc87f158a4715
SHA512

ecdb95d05cb5e34494abaa347fe7ac24b6747b736ab1d9f5a27f3044014866decc89e4391d0e76fd27c29b9ff1669243ced366a74d293642b8bf2d0b1e301572
SSDEEP

393216:IBckwqPnIgGV/r1NgeJaUv2HrmiOD7m9mHi9rPhkHmUffAi81AAT:IBcKNGV/jhCSR3HiPUmUg

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Extracted

Family

lumma

C2

https://abruptyopsn.shop/api

https://wholersorie.shop/api

https://framekgirus.shop/api

https://tirepublicerj.shop/api

https://noisycuttej.shop/api

https://rabidcowse.shop/api

Targets

- Target
  
  Release-x86.zip
- Size
  
  19.7MB
- MD5
  
  db1a46d6a06fdbb2a8b2e2a857c3816a
- SHA1
  
  c4817795ba83e1e4ce5d62355b2417177de0e489
- SHA256
  
  1e43362597cdf2d0f61ab555a4069b7c788ab135d45bf76898adc87f158a4715
- SHA512
  
  ecdb95d05cb5e34494abaa347fe7ac24b6747b736ab1d9f5a27f3044014866decc89e4391d0e76fd27c29b9ff1669243ced366a74d293642b8bf2d0b1e301572
- SSDEEP
  
  393216:IBckwqPnIgGV/r1NgeJaUv2HrmiOD7m9mHi9rPhkHmUffAi81AAT:IBcKNGV/jhCSR3HiPUmUg
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
behavioral1
- Target
  
  README.txt
- Size
  
  124B
- MD5
  
  3b4bb14e17a60137e3e93c7adac41bcb
- SHA1
  
  de09ed28df13d9325e816d0c656582a929077876
- SHA256
  
  bde691c014e6a2527d5ef783d065edf14bcfe83b20c1ff97c22d280633b5287e
- SHA512
  
  ec76f39b6ab4c6f822a1777c78212d659d86760458da9f050fba48bef12cba054573f25fc96278b49cdb163bed41a157123c01d3897226584cd1b57a653dfb50
Score

1^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2