lumma | ac9881ba3da632e68be376d6ac307962bd9116fa2240a3eb53f564f8f8d2673e

Sharing

Copy URL

Twitter E-mail

General

Target

Fluxion Launcher.rar
Size

3.3MB
Sample

250116-yw247axmfm
MD5

eee78ef06b0bee50ebeb26dd87c810ce
SHA1

a098985153e9b9c68f42e891045845cbb4d3b915
SHA256

ac9881ba3da632e68be376d6ac307962bd9116fa2240a3eb53f564f8f8d2673e
SHA512

135c0c65cd9cfc4f146aba090899ebaffbdbc71816365a568473e8837e0b43e0cb9e031f78dfa4469334a519d09d516db5204a344bbeedc65cf2840d40a776f3
SSDEEP

98304:3sMGdImCv5E3aYmlKvA43Y0Ozi/uIArpyKg:395mqE37A6XNOu/uNrpyL

Score

10^/10

Malware Config

Extracted

Family

lumma

https://robinsharez.shop/api

https://handscreamny.shop/api

https://chipdonkeruz.shop/api

https://versersleep.shop/api

https://crowdwarek.shop/api

https://apporholis.shop/api

https://femalsabler.shop/api

https://soundtappysk.shop/api

https://letterdrive.shop/api

Targets

- Target
  
  Fluxion Launcher.rar
- Size
  
  3.3MB
- MD5
  
  eee78ef06b0bee50ebeb26dd87c810ce
- SHA1
  
  a098985153e9b9c68f42e891045845cbb4d3b915
- SHA256
  
  ac9881ba3da632e68be376d6ac307962bd9116fa2240a3eb53f564f8f8d2673e
- SHA512
  
  135c0c65cd9cfc4f146aba090899ebaffbdbc71816365a568473e8837e0b43e0cb9e031f78dfa4469334a519d09d516db5204a344bbeedc65cf2840d40a776f3
- SSDEEP
  
  98304:3sMGdImCv5E3aYmlKvA43Y0Ozi/uIArpyKg:395mqE37A6XNOu/uNrpyL
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1
- Target
  
  Fluxion Launcher/Aayhtb.dll
- Size
  
  735KB
- MD5
  
  3c686bee0de43dc9b22ceb590c4f2cdc
- SHA1
  
  012d39efddabef00882d0d924320a830700a0584
- SHA256
  
  0db0a479584f02b28ab6852396e64605b04a97a018cbd9ab97a6c570e80c5353
- SHA512
  
  adbcb2b12c833725da8d61d806a1d49ec4ccd867b2aa5285fb59b15da63a71b4c2b4c36cfc8558fddb99ca484affb74410cb8bdce1862464b1897d6332eca21b
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

1^/10
behavioral2
- Target
  
  Fluxion Launcher/Autoupdate.dll
- Size
  
  2.5MB
- MD5
  
  51397005ac7db572e3af109699f4ba73
- SHA1
  
  c9bcb56dd1a4c4b687917aac34f703908a5d4bde
- SHA256
  
  07bd44748b663d9efbf35cd962408b57ad72a7ce65bdc2722db284f343b2d891
- SHA512
  
  512740d00adf5512cd8f6ca163a1c137a0e17091243d880271945b90306f7ddc6b47928b27985c5b60b4474e5be57273308babe50986fda638dc6b8ea2f0f2c8
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

1^/10
behavioral3
- Target
  
  Fluxion Launcher/Config.cfg
- Size
  
  183KB
- MD5
  
  6d7f976b644410f6251697469e25af61
- SHA1
  
  faa26974833529f162cde7273405bcc6a945a9b6
- SHA256
  
  bb83eb8a0ae75c425f6ec72af554e5f8158eb4ffa0a898e26b564fc0217c8ae5
- SHA512
  
  e160464239b42bdaade8a50e762e233053627c67bccd435c8431aff5efed36945f5524b5e1e56821625ff71456eb5b640ace959aa728d0cf186c1c91a7cf39d7
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

3^/10
behavioral4
- Target
  
  Fluxion Launcher/Quadv.dll
- Size
  
  547KB
- MD5
  
  9591405073c6460e382343c75de477e3
- SHA1
  
  32d73c95f3a6f5470230dd21800de592c06d906a
- SHA256
  
  952dc4888a39c7ae027b323345996ff163af787e71103af323588df74be01f23
- SHA512
  
  d7cf6df8eea6128447ebd99a9c4c5823b0ae1919dfd30bb63bdaa277eb7e1a7226b0bb2da675b790cb4b6cc4262c26094a96c34b3d257439a02c80b5db0f7138
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNu:s
Score

1^/10
behavioral5
- Target
  
  Fluxion Launcher/READ ME (PASSWORD Fluxion).txt
- Size
  
  309B
- MD5
  
  bd567d8164efd491467c71e8ea99c5fd
- SHA1
  
  9da659db7d208860e27dea460dcc1ef75401832b
- SHA256
  
  7f99debb677e60a87c9bd5a58ea5dc4de205f82a102a532f533f70aa8b39b09f
- SHA512
  
  27ad84fe7aae64c5b393e54e9bb885189e5e8f6e11c35a2c68d008e4b448074f486bd29ee53f327b3fca6f9eff79f5c0f39f4f798a8e6466fbaa2321fb6d288f
Score

3^/10
behavioral6
- Target
  
  Fluxion Launcher/Xheu.dll
- Size
  
  86KB
- MD5
  
  e20f47fc6b9c5223478b583a73e58544
- SHA1
  
  28a793d431dec8a637cba226b76f96b05f38c719
- SHA256
  
  5b8835142581306c013b00c1989263e4db3f2f9940755d0a178af443393219c4
- SHA512
  
  523c32b289cd836894603efc6a3a7430df79ebd42f26e603cc72e2129eec003e575a34bfb5896b6a03c10e789b27ff9e76553f17773ecab972cc23cfcc12bfcb
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNF:Bdh411I
Score

1^/10
behavioral7
- Target
  
  Fluxion Launcher/aah32.dll
- Size
  
  551KB
- MD5
  
  b0739745e782946a0dae3c0026e24d32
- SHA1
  
  702e88c1d3b23000db64028d688cda310d79d70b
- SHA256
  
  68810e83425efae5727d3ccf2aa0fcf82f571cd756c48c89869a55d952936bf6
- SHA512
  
  9390ff73c37db63721d957c59bbf46d198ca7fdc2246c340b735fab3c82bad33c3c757f466da89d1cbfc64ef43c543495499dc8036d43d1e477d0fc4f6cc9fa6
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

1^/10
behavioral8
- Target
  
  Fluxion Launcher/bin/Aayhtb.dll
- Size
  
  735KB
- MD5
  
  3c686bee0de43dc9b22ceb590c4f2cdc
- SHA1
  
  012d39efddabef00882d0d924320a830700a0584
- SHA256
  
  0db0a479584f02b28ab6852396e64605b04a97a018cbd9ab97a6c570e80c5353
- SHA512
  
  adbcb2b12c833725da8d61d806a1d49ec4ccd867b2aa5285fb59b15da63a71b4c2b4c36cfc8558fddb99ca484affb74410cb8bdce1862464b1897d6332eca21b
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

1^/10
behavioral9
- Target
  
  Fluxion Launcher/bin/Autoupdatefor.dll
- Size
  
  2.5MB
- MD5
  
  51397005ac7db572e3af109699f4ba73
- SHA1
  
  c9bcb56dd1a4c4b687917aac34f703908a5d4bde
- SHA256
  
  07bd44748b663d9efbf35cd962408b57ad72a7ce65bdc2722db284f343b2d891
- SHA512
  
  512740d00adf5512cd8f6ca163a1c137a0e17091243d880271945b90306f7ddc6b47928b27985c5b60b4474e5be57273308babe50986fda638dc6b8ea2f0f2c8
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

1^/10
behavioral10
- Target
  
  Fluxion Launcher/bin/aah32.dll
- Size
  
  551KB
- MD5
  
  b0739745e782946a0dae3c0026e24d32
- SHA1
  
  702e88c1d3b23000db64028d688cda310d79d70b
- SHA256
  
  68810e83425efae5727d3ccf2aa0fcf82f571cd756c48c89869a55d952936bf6
- SHA512
  
  9390ff73c37db63721d957c59bbf46d198ca7fdc2246c340b735fab3c82bad33c3c757f466da89d1cbfc64ef43c543495499dc8036d43d1e477d0fc4f6cc9fa6
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

1^/10
behavioral11
- Target
  
  Fluxion Launcher/fluxionlauncher.exe
- Size
  
  339KB
- MD5
  
  0faa74d371ad58d493b2df890c610774
- SHA1
  
  c7a155aca4a20258fc1105b91d5d94205415546a
- SHA256
  
  4d6330d6d983a30c5a0e469058075e96b6e8109daff1ac41a910aab2621f488d
- SHA512
  
  fa603a7a93062d72ff33e3a0562357169148470ac0defef8145d629a5efa7e87f5481a82ee1a7c4e8bcb26e242f7fa4074076f2ca0a08fa0e0b158544f9da223
- SSDEEP
  
  6144:CZZzgHPaRciI8PDjb17g5esNPwOR716Z6NWk8C93PG+gHT8oAu7us9SOq3KZts:C/Dq18PDdJNOR7cZdk8CZBiT8obus9LO
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral12
- Target
  
  Fluxion Launcher/inject.dll
- Size
  
  153KB
- MD5
  
  b9845d2018ad4752641a4de3af749fc6
- SHA1
  
  d0c7ac1b38d43f2cd462cfff36dfe41d3af63057
- SHA256
  
  93af58358d1fb0b3faf592375dc1826caf172544223e8ce2ee4e63a4f6ee46b5
- SHA512
  
  56f2b98a2e9a31c25e6a5e32037997e888c51d4b20d04b9a8eb52a5db825af82b643a06919ea918829a8d9dd80dfc5cb000c77617e753610d7e66b6d6d32ea73
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNx:dx
Score

1^/10
behavioral13
- Target
  
  Fluxion Launcher/script.dll
- Size
  
  735KB
- MD5
  
  3c686bee0de43dc9b22ceb590c4f2cdc
- SHA1
  
  012d39efddabef00882d0d924320a830700a0584
- SHA256
  
  0db0a479584f02b28ab6852396e64605b04a97a018cbd9ab97a6c570e80c5353
- SHA512
  
  adbcb2b12c833725da8d61d806a1d49ec4ccd867b2aa5285fb59b15da63a71b4c2b4c36cfc8558fddb99ca484affb74410cb8bdce1862464b1897d6332eca21b
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

1^/10
behavioral14
- Target
  
  Fluxion Launcher/version.dll
- Size
  
  183KB
- MD5
  
  6d7f976b644410f6251697469e25af61
- SHA1
  
  faa26974833529f162cde7273405bcc6a945a9b6
- SHA256
  
  bb83eb8a0ae75c425f6ec72af554e5f8158eb4ffa0a898e26b564fc0217c8ae5
- SHA512
  
  e160464239b42bdaade8a50e762e233053627c67bccd435c8431aff5efed36945f5524b5e1e56821625ff71456eb5b640ace959aa728d0cf186c1c91a7cf39d7
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

1^/10
behavioral15
- Target
  
  Fluxion Launcher/x32/autoupdate.dll
- Size
  
  10.0MB
- MD5
  
  1600936f5639edacea1a9e873df4dd59
- SHA1
  
  82e7101a3c32b7096beab9282f2054a4d2bc91f7
- SHA256
  
  42a9739f77fd2ee2294a4b7f2e2f9723344af2c44fc5cb831d39d0575ab51692
- SHA512
  
  9cfb9162b53eb3d5bb6e49e4a45a665a414649d9450d2ccd807ecd687990fe89541a994f18d89ec9275f78df5e3641482f564be8b8c255535a8e4950ddf05009
- SSDEEP
  
  24576:S9ChCwC+vwWi74+ZsEfw3fc/cUkwwKrfMarSS2EbJI/5Qz+LRWV9X1BylFDefUxX:S9C9oQM59C9oQMo
Score

1^/10
behavioral16
- Target
  
  Fluxion Launcher/x32/x32.dll
- Size
  
  9.9MB
- MD5
  
  a3bd0960ec24dcad54117d5cb2424028
- SHA1
  
  f694a433273f9179a580d0a895a5932924604dd1
- SHA256
  
  a5c8cb0e5d4859af4893b5ae756609354fd9184c0ff13eb4490c2d67d05a7e4e
- SHA512
  
  224318f75ee1ce4ebe61af64a64b389eae3bfdc707027619ebe01491e0b63ac7365c594646b5045013319fe0c6702bd5c8927d114843a18d47767d099b27cb11
- SSDEEP
  
  24576:S9ChCwC+vwWi74+ZsEfw3fc/cUkwwKrfMarSS2EbJI/5Qz+LRWV9X1BylFDefUxO:S9C9oQM59C9oQMx
Score

1^/10
behavioral17
- Target
  
  Fluxion Launcher/x32/x64config.dll
- Size
  
  1.3MB
- MD5
  
  bd6186743a7ecf9e444b8574553ba248
- SHA1
  
  a3004c5236a2983c42e016a13fa3d175534aa36f
- SHA256
  
  bcee1779acf002f972f1732090ff4b428e76a148d2e7d978a6e4f74164997ce6
- SHA512
  
  412245f3e2bb41fc154c61c0dd6ac76806f2dca2605aa7cda64c4cbece00c92d90156c97f9251f2d4134748d0c8f78fde62824390ec10be40851f91392347a5b
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNB:n
Score

1^/10
behavioral18
- Target
  
  Fluxion Launcher/x64/Vsg32.dll
- Size
  
  5.0MB
- MD5
  
  a049ce8dec55021086e4231f299c470f
- SHA1
  
  5b693669572230422fbc57e888bcd218eb2a4a98
- SHA256
  
  95f8082fde571e1bbb885fa6b92d67f3bb8fac66337687e9502aa73f6ac37ade
- SHA512
  
  1ccd6ccbe964a21958ed8765724f4d5f5aa7b0d2e025614bf4fd6a929ed8b37b09487022a62207bcec211cb455c0c9d64fac13f27d8845e2e062b9d715512cfb
- SSDEEP
  
  24576:S9ChCwC+vwWi74+ZsEfw3fc/cUkwwKrfMarSS2EbJI/5Qz+LRWV9X1BylFDefUxd:S9C9oQMo
Score

1^/10
behavioral19
- Target
  
  Fluxion Launcher/x64/cfg.dll
- Size
  
  5.0MB
- MD5
  
  7bfe885d87026d0d41dba5fb4173201c
- SHA1
  
  027637e1c7fd24a7bbaba6b926cce67e47d8e7dc
- SHA256
  
  2b529e8afa002053744bb4e2430513e7745f91b5052446ef2d0568e91d5b1280
- SHA512
  
  d2ded5d1c216900e340425f652c585398f2662f3aefe552e80161af90d1656d2ed202366c2ac794564dbf6eca0c1d769f62fcb979a0d666ea06540e389a30951
- SSDEEP
  
  24576:v9ChCwC+vwWi74+ZsEfw3fc/cUkwwKrfMarSS2EbJI/5Qz+LRWV9X1BylFDefUxd:v9C9oQMo
Score

1^/10
behavioral20
- Target
  
  Fluxion Launcher/x64/x32d9.dll
- Size
  
  100KB
- MD5
  
  a969c4ddb06f8f7b82c6e1e1f5d38fe1
- SHA1
  
  923df45d86570bc4107c0dcc6bb9bbba2a9dfe74
- SHA256
  
  bf31dd26195b875bb45f91bc4e482eb2b1657b9357846b2ced154f23b713e0e7
- SHA512
  
  88668e48ad5d17bd88f91ce3b425f536982957622f52eb6579367bede19444a955eb3db588c9820bc35ee469aad0047cee007b7250b9bc722e317d158f131d1b
- SSDEEP
  
  3:GmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNmNd:SqsiCO
Score

1^/10
behavioral21
- Target
  
  Fluxion Launcher/x64/x64d3.dll
- Size
  
  4.8MB
- MD5
  
  b744f5976b64674d00ba08631c4a07f9
- SHA1
  
  66dbc4b7a5fe9e42c8da94d7a7940023bb8b50aa
- SHA256
  
  fea44ec1aa17a4037b5d5b6de901232fedb17e8cebaca5c85aed1a335283b5f8
- SHA512
  
  9a899741a20f24377ead33430c641b933c32af55e01ed825c1c7aa7e438d39d6b60027021b479d7dcac48319bf2ea19c25ddbb048508d1e56d6aa224021ca1ab
- SSDEEP
  
  24576:S9ChCwC+vwWi74+ZsEfw3fc/cUkwwKrfMarSS2EbJI/5Qz+LRWV9X1BylFDefUxQ:S9C9oQMh
Score

1^/10
behavioral22

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Executes dropped EXE

Suspicious use of SetThreadContext

Lumma Stealer, LummaC

Lumma family

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22