lumma | 3f5da69f14dbd23adaa49630d37cc155e2dedd97683d814cec7df9eb90e31bac

General

Target

RelesseBoostrappers.zip
Size

57.3MB
Sample

250108-ebkvmaspgx
MD5

47722bb1b8387f25ff82be989a449f42
SHA1

f2e36c370ca76c52978250366792233cae6a69dc
SHA256

3f5da69f14dbd23adaa49630d37cc155e2dedd97683d814cec7df9eb90e31bac
SHA512

b850b0d19cfe07d12f80f77ef50e2ec820809c0411e0df9a244e878bc1a47a640605c5200390b308bc9111ddce4eaab5caa6cb3aca275908942fc09f4df2591d
SSDEEP

1572864:UkfZj2uYioSApK7ivo9iQUAj6pFahT/RlMa1II:UkfZrYioS6UiFFKToI

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

https://scaredsensa.sbs/api

Extracted

Family

lumma

C2

https://scaredsensa.sbs/api

Targets

- Target
  
  RelesseBoostrappers/PodD/libGLESv2.dll
- Size
  
  7.0MB
- MD5
  
  4bc8512992c028a33e96069cc80e9780
- SHA1
  
  f26ea162941951edb3d508b604b982b5344f4f77
- SHA256
  
  7d4a186f5bc35988d15df62283dee1ebcae14ff225dfdf6a18612292fa344271
- SHA512
  
  1540847d2efa14b879d6bde390630ca8d72a481e4ae8b1b506b256eefc48bbac0141274498ab8a23015c667ab29a3a7016b229a01218d384762f79bc30848992
- SSDEEP
  
  49152:UcRs1/VOY14IRwMqs5Jbkqd0bRh7yWXSnYUIV2Wi5zi1lJf3Lnn6cB7/h2Hmbs2r:PG2Ipp9eR+UDGRSoGetN4/n1T
Score

1^/10
behavioral1 behavioral2
- Target
  
  RelesseBoostrappers/Solara-Set-upX.exe
- Size
  
  4.2MB
- MD5
  
  04602651f127a19f43bfcad57514d552
- SHA1
  
  2c8a0b841bdab3b5c77794a2bad2be1e08d29d86
- SHA256
  
  a6e4e665ebfe59d7bf884c1750bcdd8cddb77fb537e9d1018efe28abf8945d53
- SHA512
  
  ddca046391d6318e80b7fdfe335cbbf26ed53ba6f8e2b632aefba1fc34385790fff0a6ac52406fffa7d0a7ab20e25ba1833956a826ff03851b6c80467852db9b
- SSDEEP
  
  49152:sF5wI7dkhv9jD0IdxD5aSs1Uc4ZZS5IAf/kpYHG:s4wkDGkpYHG
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4