Overview

overview

10

Static

static

3

appFile.exe

windows7-x64

10

appFile.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    appFile.exe

  • Size

    849.2MB

  • Sample

    250110-s76zma1mgp

  • MD5

    fd6d84c95104e45deedda3af25de54ab

  • SHA1

    60dfd364afb0214ffc5ed3efda4d45a72c919fea

  • SHA256

    2f1f7a168292f037c5fe36712ddff61d85b6b02515302bafd1d7d563fec2ad67

  • SHA512

    340294300bfcd171ce3f0cf954ffcfecf50d7b82e8700348893d30a5be7c8d9c4db1f2770af7c1c7ef378d3551302cdb92833c07f065b9aabcf2337c34044266

  • SSDEEP

    393216:mRpKL7pt6UTUxOtUq8+OHELsFWEjjmAbwoNKZ+XsBXNS35Vs7e07nbX2sAYoI:gKPuFx0URr/K+X134nby

Score
10/10
lummadiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://openlievenj.sbs/api

https://fraggielek.biz/api

https://grandiouseziu.biz/api

https://littlenotii.biz/api

https://marketlumpe.biz/api

https://nuttyshopr.biz/api

https://punishzement.biz/api

https://spookycappy.biz/api

https://truculengisau.biz/api

Targets

    • Target

      appFile.exe

    • Size

      849.2MB

    • MD5

      fd6d84c95104e45deedda3af25de54ab

    • SHA1

      60dfd364afb0214ffc5ed3efda4d45a72c919fea

    • SHA256

      2f1f7a168292f037c5fe36712ddff61d85b6b02515302bafd1d7d563fec2ad67

    • SHA512

      340294300bfcd171ce3f0cf954ffcfecf50d7b82e8700348893d30a5be7c8d9c4db1f2770af7c1c7ef378d3551302cdb92833c07f065b9aabcf2337c34044266

    • SSDEEP

      393216:mRpKL7pt6UTUxOtUq8+OHELsFWEjjmAbwoNKZ+XsBXNS35Vs7e07nbX2sAYoI:gKPuFx0URr/K+X134nby

    Score
    10/10
    lummadiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Lumma family

      lumma

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates processes with tasklist

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks