lumma | 81780a129aa4565b040c2857eeacdd49cb14b31ddaff9390e910198d8ee640a3 | Triage

Sharing

General

Target

cyberiacheat.exe
Size

753KB
Sample

250115-w9ngvasnfq
MD5

4316b5ce72ec3306d1a7efa91b1d125d
SHA1

0e8028ec732c39d7e714ad69a835c5f4bba84a32
SHA256

81780a129aa4565b040c2857eeacdd49cb14b31ddaff9390e910198d8ee640a3
SHA512

faf5ad304c44493be3e01dbcd5e86e2903624b52ce8cb3f4a9e241212fd3fe224a54ab8206b2c5f05dca4170748f906fc679ab6303f5bf56a688b82a1a26dbe5
SSDEEP

12288:+mOcxtujRaiWdR0/DXRItz3N+A4puMdlWnRStliWdR0/DXRItz3N+A4puMdlWnRP:TGgiWdReDXC536puMdljliWdReDXC53H

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

Targets

- Target
  
  cyberiacheat.exe
- Size
  
  753KB
- MD5
  
  4316b5ce72ec3306d1a7efa91b1d125d
- SHA1
  
  0e8028ec732c39d7e714ad69a835c5f4bba84a32
- SHA256
  
  81780a129aa4565b040c2857eeacdd49cb14b31ddaff9390e910198d8ee640a3
- SHA512
  
  faf5ad304c44493be3e01dbcd5e86e2903624b52ce8cb3f4a9e241212fd3fe224a54ab8206b2c5f05dca4170748f906fc679ab6303f5bf56a688b82a1a26dbe5
- SSDEEP
  
  12288:+mOcxtujRaiWdR0/DXRItz3N+A4puMdlWnRStliWdR0/DXRItz3N+A4puMdlWnRP:TGgiWdReDXC536puMdljliWdReDXC53H
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer