lumma | 5406ef1dd6a254c8cc55291e013b855c5cb46db84d2847fd5bf27a0a846267fd | Triage

Sharing

General

Target

setup.exe
Size

673.1MB
Sample

250117-jqqfwayjdm
MD5

b9b2d3cb521622e87d73bdb3966f8678
SHA1

4d7080fc5e47896f5d0f72426ab6012f55089ac8
SHA256

5406ef1dd6a254c8cc55291e013b855c5cb46db84d2847fd5bf27a0a846267fd
SHA512

5e752937612bc552e99bc44a15f887de6b5b96fa207788ff8a54c109b9a3d2ef4eecee5c512bf6787b1c9bafef3ff5e98015e197efa9fb035cafb9816ad4c5f2
SSDEEP

49152:XWSa8LpDHhaSisLrf5bb0isDBVu4yFPB:Xfvhbb4y4EP

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://twigbestug.shop/api

Targets

- Target
  
  setup.exe
- Size
  
  673.1MB
- MD5
  
  b9b2d3cb521622e87d73bdb3966f8678
- SHA1
  
  4d7080fc5e47896f5d0f72426ab6012f55089ac8
- SHA256
  
  5406ef1dd6a254c8cc55291e013b855c5cb46db84d2847fd5bf27a0a846267fd
- SHA512
  
  5e752937612bc552e99bc44a15f887de6b5b96fa207788ff8a54c109b9a3d2ef4eecee5c512bf6787b1c9bafef3ff5e98015e197efa9fb035cafb9816ad4c5f2
- SSDEEP
  
  49152:XWSa8LpDHhaSisLrf5bb0isDBVu4yFPB:Xfvhbb4y4EP
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer