lumma | d32205ff63d39ba6627c814a430806605427960b52bbc7a511a681b1395d164f | Triage

Sharing

General

Target

injector.exe
Size

150.3MB
Sample

250105-yaw12stnat
MD5

935584574898d457a4ebc84145c434d8
SHA1

224e7b7ffa45f23b1ba50640e65d8028e218ed29
SHA256

d32205ff63d39ba6627c814a430806605427960b52bbc7a511a681b1395d164f
SHA512

7b0fd7ddbb5338738145af3f3dbc61b5f40bdbc0bcda4cea0a555f8a5fc85b623e23a5ccabbcc197af235a3531053f92e8cbce91d621ff2e0a6ba2fbc775dfba
SSDEEP

6144:kTk94qCP3UlX81h7zFQwB7y3/Cg9q/bVMSpmfQdHoECOUIjlYeL5nB:q84qa3UNch7zpy3yV1mfmUIyeFnB

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Extracted

Family

lumma

C2

https://abruptyopsn.shop/api

https://wholersorie.shop/api

https://framekgirus.shop/api

https://tirepublicerj.shop/api

https://noisycuttej.shop/api

https://rabidcowse.shop/api

https://cloudewahsj.shop/api

Targets

- Target
  
  injector.exe
- Size
  
  150.3MB
- MD5
  
  935584574898d457a4ebc84145c434d8
- SHA1
  
  224e7b7ffa45f23b1ba50640e65d8028e218ed29
- SHA256
  
  d32205ff63d39ba6627c814a430806605427960b52bbc7a511a681b1395d164f
- SHA512
  
  7b0fd7ddbb5338738145af3f3dbc61b5f40bdbc0bcda4cea0a555f8a5fc85b623e23a5ccabbcc197af235a3531053f92e8cbce91d621ff2e0a6ba2fbc775dfba
- SSDEEP
  
  6144:kTk94qCP3UlX81h7zFQwB7y3/Cg9q/bVMSpmfQdHoECOUIjlYeL5nB:q84qa3UNch7zpy3yV1mfmUIyeFnB
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer