lumma | c68d6bcc8b0d0591b82e1a2ef8321382a57c56ff58831aadf58f57f3fe9d1096 | Triage

Sharing

General

Target

0P3NME.zip
Size

396KB
Sample

250112-d3sh4svjey
MD5

d9ca817a47df0f55ddbfa380fdfc1f5d
SHA1

7dc25bd49aa266786e0f8ca2b6a1af12b4f09e6d
SHA256

c68d6bcc8b0d0591b82e1a2ef8321382a57c56ff58831aadf58f57f3fe9d1096
SHA512

8547873a8c6004406a1743a68deadfc39d87a4860b65fba4af4a1f8ad3adbacad5989c4ff1b0d44d13b4a8386ae848012e2459d61e121fd9a56e159d0b0c5a37
SSDEEP

12288:Wx+7TLXgN7cXF3uBzYcGLfg3EQWdrpU17Z:Wx+ziY3kxsC17Z

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://jubbenjusk.biz/api

Targets

- Target
  
  Bootstrapper.exe
- Size
  
  395KB
- MD5
  
  a9370df5fb60672577fd727e3e798e75
- SHA1
  
  a5b4a8c7caf397a3629e0156da2594de1b657776
- SHA256
  
  481a9e582ab314faa2ab950fc99ab39fc35c071bfaf45871089892129be66d55
- SHA512
  
  f72305b18065adf66f886f5e7a7b2c4a1196c2f2c881a5d7afa7dfb88aad069c0ad2ad47c814e9c193ea1b43b488c2784b1ea135ff0a012857ea28164dd5e94c
- SSDEEP
  
  6144:ux09BNmcrazYrGakdpRylUl1ScNezRTz8WAwPyZtdDy2bkd:uy9PhazGGpcUTSc4xYWAFdDyGk
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer