lumma | 9a850fb509f0cae0e0351c783841490488d3977981a283f1b2e70d13970cc81e | Triage

Submit
Reports

Overview

overview

Static

static

1

0PENWE.zip

windows7-x64

0PENWE.zip

windows10-2004-x64

Sharing

General

Target

0PENWE.zip
Size

1.5MB
Sample

250112-11rkcstqep
MD5

46d1c430cf69eae0cf8df0120e31c573
SHA1

0e2a88cb635a0a3e9155fa516101ab3cabf9acec
SHA256

9a850fb509f0cae0e0351c783841490488d3977981a283f1b2e70d13970cc81e
SHA512

c22e30a722d7ef21b272080e0b1bf2204fb5230bd5a2cedd122af10c111813f372b9241fb7abd574862549aaed464a8e6f3b2f7428984a13c52d6f17d75ec4d4
SSDEEP

24576:2hUK6aoivC/XYzG4IKBd1F0z/xEyf+08A6ZlPwBbcvvnfF1:TZa0p4NHq7xC3vfT

Score

10^/10

lumma discovery stealer

Static task

static1

Behavioral task

behavioral1

Sample

0PENWE.zip

Resource

win7-20240903-en

lumma discovery stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

0PENWE.zip

Resource

win10v2004-20241007-en

lumma discovery stealer

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Extracted

Family

lumma

C2

https://jubbenjusk.biz/api

Targets

- Target
  
  0PENWE.zip
- Size
  
  1.5MB
- MD5
  
  46d1c430cf69eae0cf8df0120e31c573
- SHA1
  
  0e2a88cb635a0a3e9155fa516101ab3cabf9acec
- SHA256
  
  9a850fb509f0cae0e0351c783841490488d3977981a283f1b2e70d13970cc81e
- SHA512
  
  c22e30a722d7ef21b272080e0b1bf2204fb5230bd5a2cedd122af10c111813f372b9241fb7abd574862549aaed464a8e6f3b2f7428984a13c52d6f17d75ec4d4
- SSDEEP
  
  24576:2hUK6aoivC/XYzG4IKBd1F0z/xEyf+08A6ZlPwBbcvvnfF1:TZa0p4NHq7xC3vfT
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer

© 2018-2025

Terms | Privacy