lumma | 6b31b6925e503a232a11850292bf85141325b674ca30bf258e3326179569339a

General

Target

COD BO6 Unlock All Tool (Updated by ASLMANGA).rar
Size

64.0MB
Sample

250106-eqlqgawjcw
MD5

f82308e7d129d69e3857cf7d43752998
SHA1

d435e26ae697d588ebbf964a0b182758fd26ac10
SHA256

6b31b6925e503a232a11850292bf85141325b674ca30bf258e3326179569339a
SHA512

47836df85a04816bdd65d25f1f50264f67f81d966b63aa38c6dec5310cf0efea5e7db82e95d178f58f46f33b8ce5b7bc6e7e4d22167fde6439385e231628093a
SSDEEP

1572864:XHlxbxUWTt0mn91iPReAS2/bXowzajgo177cfaY:TbeWSmn98A/2/bXrLoFcf

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Extracted

Family

lumma

C2

https://abruptyopsn.shop/api

https://wholersorie.shop/api

https://framekgirus.shop/api

https://tirepublicerj.shop/api

https://noisycuttej.shop/api

https://rabidcowse.shop/api

https://cloudewahsj.shop/api

Targets

- Target
  
  COD BO6 Unlock All Tool (Updated by ASLMANGA).rar
- Size
  
  64.0MB
- MD5
  
  f82308e7d129d69e3857cf7d43752998
- SHA1
  
  d435e26ae697d588ebbf964a0b182758fd26ac10
- SHA256
  
  6b31b6925e503a232a11850292bf85141325b674ca30bf258e3326179569339a
- SHA512
  
  47836df85a04816bdd65d25f1f50264f67f81d966b63aa38c6dec5310cf0efea5e7db82e95d178f58f46f33b8ce5b7bc6e7e4d22167fde6439385e231628093a
- SSDEEP
  
  1572864:XHlxbxUWTt0mn91iPReAS2/bXowzajgo177cfaY:TbeWSmn98A/2/bXrLoFcf
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Executes dropped EXE

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2