lumma | 572ab5e1c62b3fbc5bc0b5e7886a101beb89c5a4d074ee6d1c4bc037bdb5cf73 | Triage

Submit
Reports

Overview

overview

Static

static

1

BootstrapperV2.exe

windows7-x64

BootstrapperV2.exe

windows10-2004-x64

Sharing

General

Target

BootstrapperV2.exe
Size

150.0MB
Sample

250113-d3f53stmex
MD5

ff9ecb042a95c9076b683c69d9d0310e
SHA1

07c9486bd6424dedcac4e16e5d10ecee69be1c9a
SHA256

572ab5e1c62b3fbc5bc0b5e7886a101beb89c5a4d074ee6d1c4bc037bdb5cf73
SHA512

d1bb1961698e6ae5070254270204c28ac99dfcc987eb295c9368fccbf9f62c014cb8e3194c35469161fd4bd73b642bbe8ff7598f149702325b89c1fb1d4acb91
SSDEEP

24576:fcpoY4ocmpX9j2UlWW915b8/cIAwVX+o5U+tITb71b7j:JY0sX9j2UAOjIEIAwN0+tS

Score

10^/10

lumma discovery stealer

Static task

static1

Behavioral task

behavioral1

Sample

BootstrapperV2.exe

Resource

win7-20240903-en

lumma discovery stealer

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

BootstrapperV2.exe

Resource

win10v2004-20241007-en

lumma discovery stealer

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

lumma

C2

https://jubbenjusk.biz/api

Targets

- Target
  
  BootstrapperV2.exe
- Size
  
  150.0MB
- MD5
  
  ff9ecb042a95c9076b683c69d9d0310e
- SHA1
  
  07c9486bd6424dedcac4e16e5d10ecee69be1c9a
- SHA256
  
  572ab5e1c62b3fbc5bc0b5e7886a101beb89c5a4d074ee6d1c4bc037bdb5cf73
- SHA512
  
  d1bb1961698e6ae5070254270204c28ac99dfcc987eb295c9368fccbf9f62c014cb8e3194c35469161fd4bd73b642bbe8ff7598f149702325b89c1fb1d4acb91
- SSDEEP
  
  24576:fcpoY4ocmpX9j2UlWW915b8/cIAwVX+o5U+tITb71b7j:JY0sX9j2UAOjIEIAwN0+tS
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer

© 2018-2025

Terms | Privacy