Overview

overview

10

Static

static

3

c369a79b2c...92.dll

windows7-x64

10

c369a79b2c...92.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c369a79b2c1bc86fe94896b9679370b7756d50a840ed12140d66d5bb03b1e792.zip

  • Size

    2.8MB

  • Sample

    250107-aceb1swndl

  • MD5

    4fc9a0caf262482bf9ef269e77a3eeb0

  • SHA1

    74a0e23326ffec0233da6f6a3838682aade30dfb

  • SHA256

    c369a79b2c1bc86fe94896b9679370b7756d50a840ed12140d66d5bb03b1e792

  • SHA512

    5497081050f12af450fbee97eaefc98dbf9b4bd37e5ede8cfe1d8c27a3d652bd474237198a330538163f82844f75eb66c43f4220aabebcab3924a27b32844fad

  • SSDEEP

    49152:cEXbF1lsHy/7iWpFhuNT5boQb6cZ0ESOGzim6Te7uBRHu17wahjP8yiIxNBqoovl:DF1lscx0yiANQofg

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Targets

    • Target

      c369a79b2c1bc86fe94896b9679370b7756d50a840ed12140d66d5bb03b1e792.zip

    • Size

      2.8MB

    • MD5

      4fc9a0caf262482bf9ef269e77a3eeb0

    • SHA1

      74a0e23326ffec0233da6f6a3838682aade30dfb

    • SHA256

      c369a79b2c1bc86fe94896b9679370b7756d50a840ed12140d66d5bb03b1e792

    • SHA512

      5497081050f12af450fbee97eaefc98dbf9b4bd37e5ede8cfe1d8c27a3d652bd474237198a330538163f82844f75eb66c43f4220aabebcab3924a27b32844fad

    • SSDEEP

      49152:cEXbF1lsHy/7iWpFhuNT5boQb6cZ0ESOGzim6Te7uBRHu17wahjP8yiIxNBqoovl:DF1lscx0yiANQofg

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks