lumma | 046ea5b686fdf98b7effcde523bf9c8666f362cc1e3aaf7dadf948ab4da6c6a9 | Triage

Sharing

General

Target

𝓒𝓸𝓶𝓹𝓵𝓮𝓽𝓮_𝓓𝓸𝔀𝓷𝓵𝓸𝓪𝓭_𝓛𝓪𝓽𝓮𝓼𝓽_𝓢𝓮𝓽𝓾𝓹⇌6415 (6415).zip
Size

1.5MB
Sample

250113-eytq2svqhx
MD5

cf37d159cad03ca665303339d52b7c4e
SHA1

43e69469a6c346eede22792a55369d88ae98611b
SHA256

046ea5b686fdf98b7effcde523bf9c8666f362cc1e3aaf7dadf948ab4da6c6a9
SHA512

e81af4806cd90a30cfd9849f9dcdb42fbe385f03ce015cb446adcafecd1cf602bfb5e8c262a59e4c3a8cf0e44aa606ebc6956f06362462888d07eeeff0888234
SSDEEP

24576:CuwsRyFk10hVmzsRthDD0e2eXVEFgbZ+0IsDCYy3PeM50Tzio+Z00eN2K1YQGuJT:9P0LceDDOqGyF+R1lL50Tzio+Z0rcAnT

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://cabbagebettys.shop/api

Targets

- Target
  
  SET_UP.exe
- Size
  
  665.0MB
- MD5
  
  5d188a3776400937318cc3ae2fe24040
- SHA1
  
  08a91baf5acf9c0d586623d55a5dec5a5e7d923e
- SHA256
  
  f901ccf1dba57e8aae26a8e48104a72d9667f070f805f8c44e2dd37cacf04c22
- SHA512
  
  3698e6b70027d9a541bcb9e8376fe0eac268926b9783759f61c309f9a3b1347a10440593aa9dade05a6201413fcf0fdb3670ad994d6f97108dfce502e0751eff
- SSDEEP
  
  49152:Ipvwo/ZRSY5JmURItMuUqfe6sQ/ONsIcAcIomQzyBQS3IbTNqzf4L8dO68IpjEDp:pol+ONBEqzfSIpjfm
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer