lumma | 9dec102e0c4601aff24d7505db37dec23cad16f4c8d56b397ac399d654ef8f3e | Triage

Sharing

General

Target

9dec102e0c4601aff24d7505db37dec23cad16f4c8d56b397ac399d654ef8f3eN
Size

315KB
Sample

250113-rzj98axpbl
MD5

bd9cd6ddf4d65e04aba41806cd6a9900
SHA1

12e2ed0e8aa00f9031445b1cbb44a532a096e42e
SHA256

9dec102e0c4601aff24d7505db37dec23cad16f4c8d56b397ac399d654ef8f3e
SHA512

61eebf1cafbefbf98e24a06fb847eb9bb9fe586b24b1c02af3a1c184702d329246efa12b60a97fc0bfcd3d9fd1ff261a8b7501c8e87c1e6bbab567d70e0a4f7c
SSDEEP

6144:AltaxEbNf+tlfPQe4fbUmz97jbsIKKe9/uxFG4xv21r6iYMPR71nuyJdE1gr:uUxEbNf+TvmFbOKs6v2lhPPR71ncC

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://hummskitnj.buzz/api

https://cashfuzysao.buzz/api

https://appliacnesot.buzz/api

https://screwamusresz.buzz/api

https://inherineau.buzz/api

https://scentniej.buzz/api

https://rebuildeso.buzz/api

https://prisonyfork.buzz/api

Targets

- Target
  
  9dec102e0c4601aff24d7505db37dec23cad16f4c8d56b397ac399d654ef8f3eN
- Size
  
  315KB
- MD5
  
  bd9cd6ddf4d65e04aba41806cd6a9900
- SHA1
  
  12e2ed0e8aa00f9031445b1cbb44a532a096e42e
- SHA256
  
  9dec102e0c4601aff24d7505db37dec23cad16f4c8d56b397ac399d654ef8f3e
- SHA512
  
  61eebf1cafbefbf98e24a06fb847eb9bb9fe586b24b1c02af3a1c184702d329246efa12b60a97fc0bfcd3d9fd1ff261a8b7501c8e87c1e6bbab567d70e0a4f7c
- SSDEEP
  
  6144:AltaxEbNf+tlfPQe4fbUmz97jbsIKKe9/uxFG4xv21r6iYMPR71nuyJdE1gr:uUxEbNf+TvmFbOKs6v2lhPPR71ncC
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2