lumma | 52e6020aeb700b6d33a6cf18475ef8a758e8def1802108edfbcc9b848a9513a2

General

Target

2025-01-10_0da12bada747609f83365b4cd6c59e9c_frostygoop_poet-rat_snatch
Size

5.1MB
Sample

250110-v3bzsstjgl
MD5

0da12bada747609f83365b4cd6c59e9c
SHA1

d5a320db682b04fd42bcf5a5a7ad4dd5b0fc4ed9
SHA256

52e6020aeb700b6d33a6cf18475ef8a758e8def1802108edfbcc9b848a9513a2
SHA512

58d8a4a969beea5612d53bd2cfc9625bd134f253f573d40416bb1743af959bc5ee90eb61010774c0c67ba65407b6fe92faba3c94977a739490fa6f03d973611d
SSDEEP

49152:eh7uaoDLjM+Uc+S86Pbd9XdzMhb+ptge9ZY6e30GVEidS9UE1duoSZwvx1W:ehuaccc+SPzbXdjt0vMJS

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://punishzement.biz/api

https://fraggielek.biz/api

https://grandiouseziu.biz/api

https://littlenotii.biz/api

https://marketlumpe.biz/api

https://nuttyshopr.biz/api

https://spookycappy.biz/api

https://truculengisau.biz/api

Targets

- Target
  
  2025-01-10_0da12bada747609f83365b4cd6c59e9c_frostygoop_poet-rat_snatch
- Size
  
  5.1MB
- MD5
  
  0da12bada747609f83365b4cd6c59e9c
- SHA1
  
  d5a320db682b04fd42bcf5a5a7ad4dd5b0fc4ed9
- SHA256
  
  52e6020aeb700b6d33a6cf18475ef8a758e8def1802108edfbcc9b848a9513a2
- SHA512
  
  58d8a4a969beea5612d53bd2cfc9625bd134f253f573d40416bb1743af959bc5ee90eb61010774c0c67ba65407b6fe92faba3c94977a739490fa6f03d973611d
- SSDEEP
  
  49152:eh7uaoDLjM+Uc+S86Pbd9XdzMhb+ptge9ZY6e30GVEidS9UE1duoSZwvx1W:ehuaccc+SPzbXdjt0vMJS
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2