lumma | 3bd077d4a567bcd7074d878a15d52e0763d3f2ce83a7241dda11209f0aaf0a08 | Triage

Sharing

General

Target

!Ǵe𝔱-Set_𝓤p--5311__Pǎ$$w0ɾD#!!.zip
Size

1.4MB
Sample

250114-3115xatmhw
MD5

dbf1c5395b24389294ec390632ba4b99
SHA1

8a258b84022b1b6ff8fa66b659d713d8c4111380
SHA256

3bd077d4a567bcd7074d878a15d52e0763d3f2ce83a7241dda11209f0aaf0a08
SHA512

36985225872a57d1d525ae476333e4d88c4b2e420e43ed51e57174260f3a4bca5b53fe6181ba1f2d63250748bc32633acf4f4ea07a152433d81031539746ae3c
SSDEEP

24576:GqvhoOFPLS9/OxEBwgPGliLEh2Z58qqEKwwzr9v23jS:3vrFPLsPvo2EfEK3zr9/

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://seekwiggleuz.shop/api

Targets

- Target
  
  !Ǵe𝔱-Set_𝓤p--5311__Pǎ$$w0ɾD#!!.zip
- Size
  
  1.4MB
- MD5
  
  dbf1c5395b24389294ec390632ba4b99
- SHA1
  
  8a258b84022b1b6ff8fa66b659d713d8c4111380
- SHA256
  
  3bd077d4a567bcd7074d878a15d52e0763d3f2ce83a7241dda11209f0aaf0a08
- SHA512
  
  36985225872a57d1d525ae476333e4d88c4b2e420e43ed51e57174260f3a4bca5b53fe6181ba1f2d63250748bc32633acf4f4ea07a152433d81031539746ae3c
- SSDEEP
  
  24576:GqvhoOFPLS9/OxEBwgPGliLEh2Z58qqEKwwzr9v23jS:3vrFPLsPvo2EfEK3zr9/
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2