lumma | 17e8ebdf1c3303f6c9538e9998e533962aa732a1356434d6cf78ab353f3a9f06 | Triage

Sharing

General

Target

17e8ebdf1c3303f6c9538e9998e533962aa732a1356434d6cf78ab353f3a9f06.exe
Size

1.1MB
Sample

250108-ckenvs1ngn
MD5

25b4bac0866214df0bcb32a8dc280555
SHA1

58513411b725c0f264013acacaba7fe069208aa7
SHA256

17e8ebdf1c3303f6c9538e9998e533962aa732a1356434d6cf78ab353f3a9f06
SHA512

4f63a60288d8e15eb01843d1ecc61344606a4e3bf0933cf8bd02892dbb7d2167b7b35d4ff17c5207b25057520d7147bfa4bed38d75b6429f0c9ebe6458de592d
SSDEEP

24576:setHGMwy9WuUSPl/hw6z89q1zfaaJ+1DPVhPQLc3nVQMd:j7zMU+0pJQ9hPQcQu

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Targets

- Target
  
  17e8ebdf1c3303f6c9538e9998e533962aa732a1356434d6cf78ab353f3a9f06.exe
- Size
  
  1.1MB
- MD5
  
  25b4bac0866214df0bcb32a8dc280555
- SHA1
  
  58513411b725c0f264013acacaba7fe069208aa7
- SHA256
  
  17e8ebdf1c3303f6c9538e9998e533962aa732a1356434d6cf78ab353f3a9f06
- SHA512
  
  4f63a60288d8e15eb01843d1ecc61344606a4e3bf0933cf8bd02892dbb7d2167b7b35d4ff17c5207b25057520d7147bfa4bed38d75b6429f0c9ebe6458de592d
- SSDEEP
  
  24576:setHGMwy9WuUSPl/hw6z89q1zfaaJ+1DPVhPQLc3nVQMd:j7zMU+0pJQ9hPQcQu
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer