lumma | 577acffd2b69db8b0fc1b33b54464293fe98bad61e4c6d75b5e1a4c4be13d80e | Triage

Sharing

General

Target

BootstrapperV2.exe
Size

425KB
Sample

250110-yf5v5sxjak
MD5

243de9a991629f8ded3b708937f10281
SHA1

598f43cf568dd410e7d7f7587ad796a4701b68c0
SHA256

577acffd2b69db8b0fc1b33b54464293fe98bad61e4c6d75b5e1a4c4be13d80e
SHA512

e76d27e7e6850e9673bbd4685e7f4d423c843955917faad1690d537471192669a07e2915ce4d4356311ee27b21c0c3b9ea410cd96099e3ee035cb964aabc3a65
SSDEEP

6144:f2biw0pONo+1zNaNAMJQXVGd9qRKl9JrCa/41BMEdKp:+rPNoYzNui4qA0

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://toemagnifuy.biz/api

https://fraggielek.biz/api

https://grandiouseziu.biz/api

https://littlenotii.biz/api

https://marketlumpe.biz/api

https://nuttyshopr.biz/api

https://punishzement.biz/api

https://spookycappy.biz/api

https://truculengisau.biz/api

Targets

- Target
  
  BootstrapperV2.exe
- Size
  
  425KB
- MD5
  
  243de9a991629f8ded3b708937f10281
- SHA1
  
  598f43cf568dd410e7d7f7587ad796a4701b68c0
- SHA256
  
  577acffd2b69db8b0fc1b33b54464293fe98bad61e4c6d75b5e1a4c4be13d80e
- SHA512
  
  e76d27e7e6850e9673bbd4685e7f4d423c843955917faad1690d537471192669a07e2915ce4d4356311ee27b21c0c3b9ea410cd96099e3ee035cb964aabc3a65
- SSDEEP
  
  6144:f2biw0pONo+1zNaNAMJQXVGd9qRKl9JrCa/41BMEdKp:+rPNoYzNui4qA0
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer