lumma | 5281883011b847e4ab3f68c7488a47fb8489ac802c558a2cb1e5bef588f06269

General

Target

Release-x64.zip
Size

19.6MB
Sample

250104-wncs8asnak
MD5

25493ab271580066a0d5e8d43b25e055
SHA1

f2a8336d1e6a75233f796fe37ec00aa204fb6907
SHA256

5281883011b847e4ab3f68c7488a47fb8489ac802c558a2cb1e5bef588f06269
SHA512

41728fc89da12faca4fa738f5ef48cd1d7fd1c9b82151f9d011f4079611d0e7fdc7a06503a07a469a89b9de0424404b547bd89e5678da73a8dfa89668932deb1
SSDEEP

393216:oyzn8HaG+RVYNVwS8+1Kd7qI2R/Ri977qCWEyeEcTeuoIJKxoJe4B2:Zn8yV2Vw7+10qbKzEcquoAKxogM2

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Extracted

Family

lumma

C2

https://abruptyopsn.shop/api

https://wholersorie.shop/api

https://framekgirus.shop/api

https://tirepublicerj.shop/api

https://noisycuttej.shop/api

https://rabidcowse.shop/api

https://cloudewahsj.shop/api

Targets

- Target
  
  Release-x64.zip
- Size
  
  19.6MB
- MD5
  
  25493ab271580066a0d5e8d43b25e055
- SHA1
  
  f2a8336d1e6a75233f796fe37ec00aa204fb6907
- SHA256
  
  5281883011b847e4ab3f68c7488a47fb8489ac802c558a2cb1e5bef588f06269
- SHA512
  
  41728fc89da12faca4fa738f5ef48cd1d7fd1c9b82151f9d011f4079611d0e7fdc7a06503a07a469a89b9de0424404b547bd89e5678da73a8dfa89668932deb1
- SSDEEP
  
  393216:oyzn8HaG+RVYNVwS8+1Kd7qI2R/Ri977qCWEyeEcTeuoIJKxoJe4B2:Zn8yV2Vw7+10qbKzEcquoAKxogM2
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
behavioral1 behavioral2
- Target
  
  README.txt
- Size
  
  124B
- MD5
  
  3b4bb14e17a60137e3e93c7adac41bcb
- SHA1
  
  de09ed28df13d9325e816d0c656582a929077876
- SHA256
  
  bde691c014e6a2527d5ef783d065edf14bcfe83b20c1ff97c22d280633b5287e
- SHA512
  
  ec76f39b6ab4c6f822a1777c78212d659d86760458da9f050fba48bef12cba054573f25fc96278b49cdb163bed41a157123c01d3897226584cd1b57a653dfb50
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4