lumma | 465b8f5ad5fd83b03692297160e4b187aba0c20df0afa1130e45f4d9d4dac8e4

General

Target

465b8f5ad5fd83b03692297160e4b187aba0c20df0afa1130e45f4d9d4dac8e4.zip
Size

258KB
Sample

250107-acdeqatrax
MD5

c5590023393a298a94d966027e3580d6
SHA1

dc861c1a024c1bf1921a071ee6b62d10a67d00e2
SHA256

465b8f5ad5fd83b03692297160e4b187aba0c20df0afa1130e45f4d9d4dac8e4
SHA512

e1cb6c1ad9528ceff8883ef080ecf90dfd00480c037847de1d71000a0baa43916c7743d67c0268e366d96a01c2c28c0ada4128d74f8797025006a68e1e4ea3db
SSDEEP

6144:l/6W6vSd0QBXnFWBTNUHoCwBF6fybf58HRIs3AZlbqlJdiDQ:liWWB03S6oCwF6fybf5o3AZlbqluM

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

https://healbewilk.cyou/api

Extracted

Family

lumma

C2

https://healbewilk.cyou/api

Targets

- Target
  
  gojeks.exe
- Size
  
  20KB
- MD5
  
  fa97a6f9d73a5df050e0db6acb82c478
- SHA1
  
  5776f50071359218699f90443a6dd51c31f5d639
- SHA256
  
  c7c7ced1b2fa62aa6c504b0ba04031dc804ee7a35b5d9a99df37fbf25a6cb86f
- SHA512
  
  68620298d6cec8e8d252963cfb65eaa4b78281d95b9f30a3a82756d83ee8c801794cdc39a12e2e68be60cc423db1b7ac57c1f2cfc5b02a8ca686bc634ef0d25e
- SSDEEP
  
  384:JQx53wOF+USlO4DLvzbSkGIs3c3MhaVCWu2:JkVwOF+3SbIssexWz
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2
- Target
  
  wincr.dll
- Size
  
  683KB
- MD5
  
  e41e2b47fe05aa5155cb079c4118ccdc
- SHA1
  
  403b2653bfb04fa4bb151b10183e354e322b7b8e
- SHA256
  
  196696b311241febe7f706082bbce27ba0657c604f4fb54c83000d7454d537dd
- SHA512
  
  4ad49ee1a4a2b79e507f6bcfde9a525972c49523f2b17c8c98a8fcca1e47e05f3ea0c8d15038cf32f1e49cf639152cd2364c24e5c53eb1c8c366d830a67cee49
- SSDEEP
  
  6144:bcMM/MYGMW+ucnrXcmcXN9KFBFJov6X7PDMXwoKrx98pXa9/mHRTZ7ndmlkH5+TY:eE+/NbzxYaaH5
Score

3^/10

discovery
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4