lumma | 8e55b67be7987fb3207b76046d74f1bbae18ccec6d0157beceb02ebc4237e92f

General

Target

2025-01-09_a946341ddf4d096428caf895a3f4bbe1_frostygoop_poet-rat_snatch
Size

5.1MB
Sample

250109-c9963axndq
MD5

a946341ddf4d096428caf895a3f4bbe1
SHA1

99a0e94e841579a04682e594d419e172ef4d1923
SHA256

8e55b67be7987fb3207b76046d74f1bbae18ccec6d0157beceb02ebc4237e92f
SHA512

db6aba467e22a66844b884acadacdd87241e247c46123ffcce0924b20060627ae3bce657d22ee70764cc71283158606d4974b9e628ba1c56174cca47da9dba14
SSDEEP

49152:+MytsgYE+km2KpIeCpdbuVXscIhtIQ1NJV/blqw0ADcnCpCBYDPLlV5wz85Z+ug4:N0sREAfpqpdbm851N90wVfsDbg

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://robinsharez.shop/api

https://handscreamny.shop/api

https://chipdonkeruz.shop/api

https://versersleep.shop/api

https://crowdwarek.shop/api

https://apporholis.shop/api

https://femalsabler.shop/api

https://soundtappysk.shop/api

Targets

- Target
  
  2025-01-09_a946341ddf4d096428caf895a3f4bbe1_frostygoop_poet-rat_snatch
- Size
  
  5.1MB
- MD5
  
  a946341ddf4d096428caf895a3f4bbe1
- SHA1
  
  99a0e94e841579a04682e594d419e172ef4d1923
- SHA256
  
  8e55b67be7987fb3207b76046d74f1bbae18ccec6d0157beceb02ebc4237e92f
- SHA512
  
  db6aba467e22a66844b884acadacdd87241e247c46123ffcce0924b20060627ae3bce657d22ee70764cc71283158606d4974b9e628ba1c56174cca47da9dba14
- SSDEEP
  
  49152:+MytsgYE+km2KpIeCpdbuVXscIhtIQ1NJV/blqw0ADcnCpCBYDPLlV5wz85Z+ug4:N0sREAfpqpdbm851N90wVfsDbg
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2