lumma | 6bb3861074c36db047720db266bb6770df21962dea2098f453b29d7ca24c5adf | Triage

Sharing

General

Target

Ver-7.3_appinst_ENx64-86WIN.zip
Size

29.5MB
Sample

250106-py8v3syqbq
MD5

12612cdb462d3a9e17ebae55a40c2ace
SHA1

2423c3970e6a4237c698607fb58c5334eab60ff5
SHA256

6bb3861074c36db047720db266bb6770df21962dea2098f453b29d7ca24c5adf
SHA512

189d1b2064302cbfd2bcd2fde19669ed660e735f9506f488be5aa88df47f10f6561ce290ea3db4b544abbdbc2cc2fc37879be52516025e72f76083013c002833
SSDEEP

786432:8KwEuUvidsSuf+dPY+uo6rADAFx/jb0u0iY8aqnFn:PwEL0u4g+uo6rADYx/v0+YZSn

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://wholersorie.shop/api

https://framekgirus.shop/api

https://tirepublicerj.shop/api

https://noisycuttej.shop/api

https://rabidcowse.shop/api

Targets

- Target
  
  Ver-7.3_appinst_ENx64-86WIN.zip
- Size
  
  29.5MB
- MD5
  
  12612cdb462d3a9e17ebae55a40c2ace
- SHA1
  
  2423c3970e6a4237c698607fb58c5334eab60ff5
- SHA256
  
  6bb3861074c36db047720db266bb6770df21962dea2098f453b29d7ca24c5adf
- SHA512
  
  189d1b2064302cbfd2bcd2fde19669ed660e735f9506f488be5aa88df47f10f6561ce290ea3db4b544abbdbc2cc2fc37879be52516025e72f76083013c002833
- SSDEEP
  
  786432:8KwEuUvidsSuf+dPY+uo6rADAFx/jb0u0iY8aqnFn:PwEL0u4g+uo6rADYx/v0+YZSn
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer