lumma | 3a703fe4bc4e4c19f7569b7ba00f1d4dc75bdffc605528e588e54fd789a51301

Sharing

Copy URL

Twitter E-mail

General

Target

Wave-Executor-master.zip
Size

16.8MB
Sample

250105-tkkzbaynew
MD5

19ae9f95c107d9a1d9e8df04708b5b9a
SHA1

bc7408e2a870600384c017c708285d9f3dc2afab
SHA256

3a703fe4bc4e4c19f7569b7ba00f1d4dc75bdffc605528e588e54fd789a51301
SHA512

c96b9523da2826b95627663fc05105a0e6b48269908905f0d951feaf9160a26ec42b87892be724107f44cec5dda28b69e1389064b226f79c4135bb6fdfa027e4
SSDEEP

393216:S8RgSiJQXCx5OJLdZKyJfJupdK2FyJfJupdK2q:lRgSFCglfv1JupX01JupXq

Score

10^/10

Malware Config

Extracted

Family

lumma

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

https://fancywaxxers.shop/api

Extracted

Family

lumma

https://fancywaxxers.shop/api

https://abruptyopsn.shop/api

https://wholersorie.shop/api

https://framekgirus.shop/api

https://tirepublicerj.shop/api

https://noisycuttej.shop/api

https://rabidcowse.shop/api

https://cloudewahsj.shop/api

Targets

- Target
  
  Wave.exe
- Size
  
  513KB
- MD5
  
  75ed57737c412920b83115a7f83ab080
- SHA1
  
  b0c063d5a3ce591344a3e75b0d6684831e4dd5be
- SHA256
  
  465a5e75e0dc8f8ea267e50b10ad2500004351ab9de751a559845a33eb776174
- SHA512
  
  856b7d3bb38c8549cacfffcd4ab2bcc850b42fdac6c17ec5169cdd9ee037b04f57aab165590302706d8d70ef022737af9a707646656b8e89bc34e7e3d4a9bc71
- SSDEEP
  
  12288:pCNPcUlbc0Lc9bJOqEyBngvKDqcmUPnwYXLFNKScYr:pCWUlbc0LcFJOqEJSD4UPwYXL
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2
- Target
  
  d3d9.dll
- Size
  
  1.8MB
- MD5
  
  7b7447b345be7891c781915ffb1f4dce
- SHA1
  
  891a05f75b952880136426f409435ece5d5b7a0c
- SHA256
  
  91e0b91a628c32113dbffd820cbe219a55f54d68b4aedbdcc849c70ee3772223
- SHA512
  
  8976d11781f610360b5c2aad70648107bdbdc1c99cd6a1c146162743312dea56f8a6b0ba35dc040c1a098369eac13a055c7a8157de8611d34b4e79d2c2b213e8
- SSDEEP
  
  24576:1SwHWp3qWhlDzf6uNEQbaYv2KUYPMQlZh9OPXwBxNcBWgskrh8j/2L+qblg9nP:12p3qWjzf6uaYv25LKxH4skdL+qblg9
Score

1^/10
behavioral3
- Target
  
  d3dx9_24.dll
- Size
  
  3.4MB
- MD5
  
  b165df72e13e6af74d47013504319921
- SHA1
  
  c45b192cf8904b7579bbc26c799aa7ffa5cbb1d4
- SHA256
  
  1ec422bd6421c741eef57847260967f215913649901e21dd9c46eb1b3bb10906
- SHA512
  
  859b6cd538735e5cc1c44f63d66b25588ad1ad32202cae606ff95b8c4a80f6a66db9ef7c5d43820010de9334b8bbbfb079939ce89ba0b760f5d651d7fa8268ed
- SSDEEP
  
  49152:oKcfEwqx3mAEXywKYlip1rq1UzMYdBf4Uhn6bZy4rW4uosdBxn7LFU:O8f3R4YN6SrhBpLFU
Score

1^/10
behavioral4 behavioral5
- Target
  
  vcruntime140_1.dll
- Size
  
  48KB
- MD5
  
  7e986e7469d9ab3b1138353418da1793
- SHA1
  
  77903692aae688f6d5b04511d5006c66ce4daf8b
- SHA256
  
  0e560532e721b6938dafe4055eedd0251ba5eb5994cd96937cebbcf16a7ddae5
- SHA512
  
  6c8951ae9a0e329cf32eed8bf32bd83294e7a1cf7f16dd716cedbed4caf39e56e62c5f639091f9711922443ada7dbc61dffcace093211d70a85821f19883cbea
- SSDEEP
  
  768:uzzO6ujT3MbR3vXCz6Sz2q83yvjdsrU9zcgElebe9zVFZ:rq/XU63Cjd9zcZebazDZ
Score

1^/10
behavioral6 behavioral7
- Target
  
  Wave-Executor-master/app/release/app-release.apk
- Size
  
  3.7MB
- MD5
  
  eaa6afb93c41f4da380ca1fd6ff9764d
- SHA1
  
  8567562deff72309bf88410322b8b6f4b6d1fb1d
- SHA256
  
  8ef48fa8d8f9c0869576e4503ca032bab754d78fff60d0f6df48876481b107ec
- SHA512
  
  1f8353ffc867b00f737772db2636874260c5ae13ad4f3c140da11398b1ef58fa8a8e0d217431f77959b0d2df9b9bd925f6aa867b25407ef3663882b01201fbae
- SSDEEP
  
  98304:3utzQQ1gGArduH1mRDtv/hhlWPJNBQUc2qYmq975:AzQQ1g9rduYRDtXErBQXFO
Score

1^/10
behavioral10 behavioral8 behavioral9
- Target
  
  Wave-Executor-master/gradle/wrapper/gradle-wrapper.jar
- Size
  
  53KB
- MD5
  
  451e0b3037c608b724985f74784e7bb7
- SHA1
  
  636cf935a0fd1451657a4112974b3500cce3ab84
- SHA256
  
  381dff8aa434499aa93bc25572b049c8c586a67faff2c02f375e4f23e17e49de
- SHA512
  
  e1e0d6e87852ee598208c409a91e8b8019cd567dfe1b45e90c8c5c3f1494b7905652a07526ea4592fe39f86ac0e6bdfd9520c70d660fd83b11a97811044aa55f
- SSDEEP
  
  768:YeDjUIt2uMHJ811mk6o1ToMV9gwfA6M++UTK1sae5cwVWhKq/18VGf6827OORU:YePAuMpDUR2UuoxWJ/q7vRU
Score

1^/10
behavioral11 behavioral12
- Target
  
  Wave-Executor-master/gradlew
- Size
  
  5KB
- MD5
  
  857faf4b42fc9e324fb40b7223f2a94a
- SHA1
  
  fbb60ffd7f1e5155bb2ae43400efac6880a51265
- SHA256
  
  8c4c04dd98db1f00d49456dd162418a39312c5cb13d6865d783deb483bd1ed22
- SHA512
  
  5d04865ba48a8497c4845e232e6987159b70c6a3c41a3cb8c61154c2a3557c6b40ac62dc04fadaa5d4da9a1dbb1164a4060bb3bea57826150123751dd7280ab5
- SSDEEP
  
  96:8JTrDl5IW0Y9nxK8eXUCeWxeAjwlwLh2jfj9jwjSjDjY7Z:gPB5IexK8OZeWVjHN
Score

1^/10
behavioral13 behavioral14 behavioral15 behavioral16
- Target
  
  Wave-Executor-master/gradlew.bat
- Size
  
  2KB
- MD5
  
  b19dcfdb742582b6ccb4e0f4c77791b1
- SHA1
  
  aad30867c46885fcfc019c318138b0f62fa53172
- SHA256
  
  2f18fc6abd50803de7b3a225038d284268904c9d13caa6cf81f99365dc876479
- SHA512
  
  9336d2e0d52322fad871f89130903c8f0a14fa6be6579f653c7959d83d0fde7a99106e7878aa3168713c0ce1a0904f72527ddca99543016dbe54d7fe109fd9eb
Score

7^/10
- Loads dropped DLL
behavioral17 behavioral18

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Loads dropped DLL

Suspicious use of SetThreadContext

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18