lumma | 0d12f2df4b2ec72c580e16ecfce84fb2c99b99ed4aec6acdbfdc6f5bb33efccb | Triage

Sharing

General

Target

0d12f2df4b2ec72c580e16ecfce84fb2c99b99ed4aec6acdbfdc6f5bb33efccbN.exe
Size

502KB
Sample

250103-y4jyks1pfv
MD5

8525bd5cda8e580b522d6d43a4e9d1e0
SHA1

0f5845b377a18068b005b018edb9dc7f33db55f7
SHA256

0d12f2df4b2ec72c580e16ecfce84fb2c99b99ed4aec6acdbfdc6f5bb33efccb
SHA512

6a9046f8b5d54cdb1edbf87c4cb1c92f2fd3b0287321a050ce5a083116da2f4a6e00ca6e24f249704a72f86f98f58b78ea2f8a523506749518666b8cc04bc8a1
SSDEEP

12288:0H4SldRxAWdkpOQ7CB+NDLohWxmUbB6nnxpkT7J:0HxldtkoILohkmU6nfkTN

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

Targets

- Target
  
  0d12f2df4b2ec72c580e16ecfce84fb2c99b99ed4aec6acdbfdc6f5bb33efccbN.exe
- Size
  
  502KB
- MD5
  
  8525bd5cda8e580b522d6d43a4e9d1e0
- SHA1
  
  0f5845b377a18068b005b018edb9dc7f33db55f7
- SHA256
  
  0d12f2df4b2ec72c580e16ecfce84fb2c99b99ed4aec6acdbfdc6f5bb33efccb
- SHA512
  
  6a9046f8b5d54cdb1edbf87c4cb1c92f2fd3b0287321a050ce5a083116da2f4a6e00ca6e24f249704a72f86f98f58b78ea2f8a523506749518666b8cc04bc8a1
- SSDEEP
  
  12288:0H4SldRxAWdkpOQ7CB+NDLohWxmUbB6nnxpkT7J:0HxldtkoILohkmU6nfkTN
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer