lumma | 05ca4e3fb6e3992ea58d53d10d2f652f228d24faaee9744660df4bb3f70faa82 | Triage

Sharing

General

Target

Set-up.zip
Size

3.2MB
Sample

250116-llgpaatqas
MD5

588ef8cf810e5a29017d8a6c266fa0f7
SHA1

5eaeb4ed08065a048f9165ba9ad44887651a9500
SHA256

05ca4e3fb6e3992ea58d53d10d2f652f228d24faaee9744660df4bb3f70faa82
SHA512

525137cc4e8b5c8db3df05e7eede43f653e432a3b2cdd90dcc37384a9eb399c906b0e30a819d25a0196ec1e0347eeeb0ce8d026c10874d22de2cb8cc212a3e8e
SSDEEP

49152:PWrBIDVhkSQ0cTjj5tL+nC1k6WqYXQyhjewe:+F6iv0WvvL+nCyyYXQ6KF

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://welltodobaoz.shop/api

Targets

- Target
  
  Set-up.exe
- Size
  
  663.1MB
- MD5
  
  81f36f9e8139486467a8067893bac5c0
- SHA1
  
  4dd6670bda78c38850f3ce857aa4632eff79cfa7
- SHA256
  
  ff6a8550dfd88f8d91ffde10c96c9c5616e2ce23b632a5dd2050696d4bc1740c
- SHA512
  
  29842f315616fb1d02961b2a0af36cf2e9dd5fff1d06d55a4f376b82cbd3c5c41d8c3d30574036debc41afa6ad005653880f29da5fb5d66a55d0ca328dc11820
- SSDEEP
  
  98304:60WFsTuRN2zazBLlLvOc1Pgd1E20fzsFvOAM:/WFsTuRN2zahf1Y7E
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer