lumma | dd376180de2b87377738050491d1b6d49a8a77b32c8145e7ecad56185130012d | Triage

Resubmissions

07-01-2025 19:15

250107-xymlvavkhs 10

Sharing

General

Target

inter_acid.exe
Size

1.4MB
Sample

250107-xymlvavkhs
MD5

4fd542a5d9d9fb3bf5c712d9c8798977
SHA1

fdf1d0613754c4c422ecdccdcdc8e6509adbf042
SHA256

dd376180de2b87377738050491d1b6d49a8a77b32c8145e7ecad56185130012d
SHA512

a48db2fc60b9e9ddbb522a58551c246fcb3642422901b3a4adf550f145db26ba8921fc22c3268f6113022ea19209748cf8647f63b3a7a987dbf1cb97926687e3
SSDEEP

24576:VGd2VjDuBPnI4w698ckMXmaAPmjtoJmynlRti9Xw7F1CIAGP1Ckh1rPK8:S21YPI4w6TkgmzPHcynl/WXeCcsU1v

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

https://begguinnerz.biz/api

Targets

- Target
  
  inter_acid.exe
- Size
  
  1.4MB
- MD5
  
  4fd542a5d9d9fb3bf5c712d9c8798977
- SHA1
  
  fdf1d0613754c4c422ecdccdcdc8e6509adbf042
- SHA256
  
  dd376180de2b87377738050491d1b6d49a8a77b32c8145e7ecad56185130012d
- SHA512
  
  a48db2fc60b9e9ddbb522a58551c246fcb3642422901b3a4adf550f145db26ba8921fc22c3268f6113022ea19209748cf8647f63b3a7a987dbf1cb97926687e3
- SSDEEP
  
  24576:VGd2VjDuBPnI4w698ckMXmaAPmjtoJmynlRti9Xw7F1CIAGP1Ckh1rPK8:S21YPI4w6TkgmzPHcynl/WXeCcsU1v
Score

10^/10

discovery lumma stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lummadiscoverystealer