lumma | ed0191e29843fbcc3c36a0788229f2eb308272f0c32b316e7de489a5485727b1 | Triage

Sharing

General

Target

ed0191e29843fbcc3c36a0788229f2eb308272f0c32b316e7de489a5485727b1.exe
Size

310KB
Sample

250116-ttmt9sylbt
MD5

fa9267820f3ec58aeda90772a3c9fc44
SHA1

7de04331d18b49fa1025ba170ed1949a25131c82
SHA256

ed0191e29843fbcc3c36a0788229f2eb308272f0c32b316e7de489a5485727b1
SHA512

58fd7bf740bb56ac3139fc536981086cbea76a5a6040900441f55e44d2dc36e4850712f3ce71ed5a9d264d4ad3c62f20bb358a2655f62b9f92c0332b6ac26979
SSDEEP

6144:NnFVM1IbB0hVf29AEG5TG2o0CqsCv2AdRtu:RQy0hVfeCGNAsO2Ac

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://impresnyb.cyou/api

Targets

- Target
  
  ed0191e29843fbcc3c36a0788229f2eb308272f0c32b316e7de489a5485727b1.exe
- Size
  
  310KB
- MD5
  
  fa9267820f3ec58aeda90772a3c9fc44
- SHA1
  
  7de04331d18b49fa1025ba170ed1949a25131c82
- SHA256
  
  ed0191e29843fbcc3c36a0788229f2eb308272f0c32b316e7de489a5485727b1
- SHA512
  
  58fd7bf740bb56ac3139fc536981086cbea76a5a6040900441f55e44d2dc36e4850712f3ce71ed5a9d264d4ad3c62f20bb358a2655f62b9f92c0332b6ac26979
- SSDEEP
  
  6144:NnFVM1IbB0hVf29AEG5TG2o0CqsCv2AdRtu:RQy0hVfeCGNAsO2Ac
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer