lumma | 37e2570bb264439d9b5d2a0304b08561294d10ab4905e8cd25eb5ee4828432f5 | Triage

Sharing

General

Target

megamon.zip
Size

255KB
Sample

250110-mat1xatpeq
MD5

3ebc29ac4d75e19a6882d85bb20687a1
SHA1

f9343ad6e94c2469ab9ca9810d4e2f371f0d16d5
SHA256

37e2570bb264439d9b5d2a0304b08561294d10ab4905e8cd25eb5ee4828432f5
SHA512

91c00ff36472d90410df1193d56f4bec6b7c27b78ef2242a8f930761f772aa7b915e48715c6b605e14698413cff32a7fe52a12ba984959ca169167eec5ca0ccd
SSDEEP

6144:3bWj9JcaCEqQ01FQM14WEgaP+DB2PExrgTQyxn1rt7A:ij9JcaCEqpFQMqP+DBTxENrtU

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://robinsharez.shop/api

https://handscreamny.shop/api

https://chipdonkeruz.shop/api

https://versersleep.shop/api

https://crowdwarek.shop/api

https://apporholis.shop/api

https://femalsabler.shop/api

https://soundtappysk.shop/api

Targets

- Target
  
  bodjro.exe
- Size
  
  20KB
- MD5
  
  eda008b3d85f740594ee6c58580dc12d
- SHA1
  
  50df67bbb388e6e807a13f688b8190d02b40629d
- SHA256
  
  82382cbada4b82dbd581b10e06cd826acc4923c1e95325dcbf3904720a9a61bf
- SHA512
  
  9011b9f14751086f136d8f11b2a5e99f3a288278d0be66ccddfa0364f7e494165aadffb0542f298791f40bdfe50fe2df196b2a65a4a825c644807851e290e4ce
- SSDEEP
  
  384:f53KPzo+U39OYDLfzmkky15QTha3CWu2:fFKro+5k31mzWz
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2
- Target
  
  wincr.dll
- Size
  
  671KB
- MD5
  
  2730df29ffd09125393452bea2fc7109
- SHA1
  
  9b83e1b375e2f6614e84ea2c3bdce127cc191f41
- SHA256
  
  449844d3497bb58c231051a95b9868a5854e90efe2a683f1fbe42541f9d768c7
- SHA512
  
  3b56394d2e3ff8466a00cddb09375057c1aedb5d5ef320a926052155ed3514e175ffcf816ec5d120f834d11cb303bd869ed294eaa9e225e0819ec106d960b0e6
- SSDEEP
  
  12288:FeUg6c/GuwcjRdBeoeZlVje1/TVk6q4NA:0Ug6cFdeZZlS/
Score

3^/10

discovery
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer

behavioral3

behavioral4