lumma | 3cc8818b60064aec3e11b4904fa2d7f8b2388b2fe669217ab7fe47d03d0eef77 | Triage

Sharing

General

Target

RelEase-x64.zip
Size

19.7MB
Sample

250106-mar7batpav
MD5

b25b188f55499f7c2b50b002779de4bf
SHA1

a5d51c1600c91f801902f6287b5fdd32187740b9
SHA256

3cc8818b60064aec3e11b4904fa2d7f8b2388b2fe669217ab7fe47d03d0eef77
SHA512

06f85f4008bd331eeb92483057eaec46e65aad7ecb89815b63ddabfaeb106e562db83cedbba769e84bd459263162f4eae533e485032fdae528409e1a33b93a48
SSDEEP

393216:WFvbFpo76jehYfWtBCuha1ILOru77XeojOpEpxGJhpNPm1eZ56GIlwpVOC6BWWnb:cygWa1yJJpsN+cZ56ypVOBb

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Targets

- Target
  
  RelEase-x64.zip
- Size
  
  19.7MB
- MD5
  
  b25b188f55499f7c2b50b002779de4bf
- SHA1
  
  a5d51c1600c91f801902f6287b5fdd32187740b9
- SHA256
  
  3cc8818b60064aec3e11b4904fa2d7f8b2388b2fe669217ab7fe47d03d0eef77
- SHA512
  
  06f85f4008bd331eeb92483057eaec46e65aad7ecb89815b63ddabfaeb106e562db83cedbba769e84bd459263162f4eae533e485032fdae528409e1a33b93a48
- SSDEEP
  
  393216:WFvbFpo76jehYfWtBCuha1ILOru77XeojOpEpxGJhpNPm1eZ56GIlwpVOC6BWWnb:cygWa1yJJpsN+cZ56ypVOBb
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer