lumma | ff0dbec02b96a783ace56923493c73cd2f08288941bc5337cb25fb2bd83b9af5

Sharing

Copy URL

Twitter E-mail

General

Target

rust-hack-fr33-branch (1).zip
Size

356KB
Sample

250105-v7t16s1kfs
MD5

8f90f7d3f4542450d607d8c490a3a1a8
SHA1

4dcd1699b9395283fa175aa3077ca1964d6397c6
SHA256

ff0dbec02b96a783ace56923493c73cd2f08288941bc5337cb25fb2bd83b9af5
SHA512

3e8639a3b9b0dc58955da3f75c2c7ea6caf57e01f4def8dd97b9be46e47a14fe600a48c8832124f49582b5be3523f8ef9af6dec7afecfadeaad9a06162924932
SSDEEP

6144:XaQZmF/QmMJYXGS25NHeGuhA66eATENL7LtzjvTicVBfowX3jF0yhSZpHxV:XaQZc/rXoDeG/66eAwlRzicVBrXzF0yY

Score

10^/10

Malware Config

Extracted

Family

lumma

https://hummskitnj.buzz/api

https://cashfuzysao.buzz/api

https://appliacnesot.buzz/api

https://screwamusresz.buzz/api

https://inherineau.buzz/api

https://scentniej.buzz/api

https://rebuildeso.buzz/api

https://prisonyfork.buzz/api

https://ingreem-eilish.biz/api

Targets

- Target
  
  Loader/Loader.exe
- Size
  
  646KB
- MD5
  
  2ec18b257662dd107ae84263ecd2e5c1
- SHA1
  
  ce2efa8394c35b8da16428b10ece4a856c53dd1f
- SHA256
  
  539f0617a85a7a0773cf9e36d803c1a8ddf5c69dc003c80c1f3afac147b47554
- SHA512
  
  6cf6f83dbaca7f218f6add89de942bc6a8d83fef9ccbbb3f3ef3c03bba4233a25b18f1bc392da27b37b88bb649fecc7c05ed28a9dcf849de957103f03fa63342
- SSDEEP
  
  12288:xI6tpbrZqB16QBXv9trocVyiBFAMyhZVUEz4Pjt/ax7OA2:xIMH6JjocVy+yhZVUEz4PAx7O
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2
- Target
  
  Loader/dmxmlhelputils.dll
- Size
  
  259B
- MD5
  
  9abd95d760a752257bcb7f5ee3c14008
- SHA1
  
  29c4a0b474ef189b2f6a267d560b103ab5f4b323
- SHA256
  
  d9050e97477cfe7be44992a505c2cdad8f0f43a3c0bf0e1e1a3d1f175d92ac51
- SHA512
  
  f39a345e695d42d81a35b71923da8dd1907a0c48da24f580a102600fb72bcf259ee817414e736d67b0f1196dae0610a00926b1aa94640171e6f5cf09b6830da7
Score

1^/10
behavioral3 behavioral4
- Target
  
  Loader/likodi/NotificationController.dll.mui
- Size
  
  4KB
- MD5
  
  5a940db75a80c7571cc221cf3870ef78
- SHA1
  
  203ac94c768a8916ce70f6db7ada481185c06eaf
- SHA256
  
  d3e15411a49c52b69d00ea4c32a3eba6eadb26da7b7f294e90c75aa7d33f210f
- SHA512
  
  ec639abf80a633f3fa1a848d2236ca8cf28d45a5a0af85df6c3273f05fcb6db2fe6afbc057761c07234ca3f9b619866697dd357d155ab5df8e1687267ecc7099
Score

1^/10
behavioral5
- Target
  
  Loader/samlib.dll
- Size
  
  9KB
- MD5
  
  f3078d7cbe7d330f06c51dc177f58e6f
- SHA1
  
  bb191e939d938b6fd9145473b4fb16cd48e33595
- SHA256
  
  83b293af5ae8fa2f226dc86c4b9aeb5f6af41880eb72c55c895c2ab445b0bbd9
- SHA512
  
  1749bbc37baa46aa95a883029ac52a366fbbe26963ac38e34dc5f6eca150a6a6158f8657543d4ecef59dae3570180bf472c981b1473c98be9c570b42aab0e897
- SSDEEP
  
  192:xxoFkSrGiZ3P621D3xjzAS9CNnGhk8YGCPQp+7FTQgl7OQHQF2T:xxofVZ3T9jkS9ClwkvGsDppl3wET
Score

1^/10
behavioral6 behavioral7
- Target
  
  Loader/wdi.dll
- Size
  
  86KB
- MD5
  
  7d326b235ab064ff70376f1d015cc084
- SHA1
  
  3b394e93ef206d30fafbf3202a5a63a4b6667580
- SHA256
  
  404dda0bdf9a6c1c61653cf7e965f504b3a3a3b662f88c906aaa19a9c3df160c
- SHA512
  
  f33face04507edd462b40dfd0771da3f241374c99fc956def9678a05c15bf5f8c945579006ab250646120a7f983fe4a57b55c93bdf921142f6464bc74fee2347
- SSDEEP
  
  1536:2xg+XurUE+dlamMsyhirFoNZ5MtDPQEInpF6qbTyuVKiRoTnd5Zatd2nZXBjVym4:2x5XXdMTsyhirFoNZ5MtDIBpFtvLASoy
Score

3^/10

discovery
behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Loads dropped DLL

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8