lumma | 437f9b11af79677b2298f5b8430f542634d5b963193d0791654d3f9af55dbcc8 | Triage

Submit
Reports

Overview

overview

Static

static

1

Setup.exe

windows7-x64

Setup.exe

windows10-2004-x64

Sharing

General

Target

Setup.exe
Size

1.1MB
Sample

250117-rtkc2aslgj
MD5

f702a4af66cf6f8d69abc7d6815c868a
SHA1

e08ea143335718aa416edef9d1cb0b7e91561377
SHA256

437f9b11af79677b2298f5b8430f542634d5b963193d0791654d3f9af55dbcc8
SHA512

3882a83604940d4f0dd5cee4e4d7156425a81ec274d88fb3d1e6167962a1c913a615fc2002ad911d5c5f6b24b013eee9c22b2767c021c9249a9bb59fe83d58bd
SSDEEP

24576:FEtjUoHCP3lNgl+JNY6iNk8S4o3IAMawhrdZyXDpA3P:+SoH83lal+mNk8Sj4AwxMTpOP

Score

10^/10

lumma discovery stealer

Static task

static1

Behavioral task

behavioral1

Sample

Setup.exe

Resource

win7-20240903-en

lumma discovery stealer

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

Setup.exe

Resource

win10v2004-20241007-en

lumma discovery stealer

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

lumma

C2

https://twigbestug.shop/api

Targets

- Target
  
  Setup.exe
- Size
  
  1.1MB
- MD5
  
  f702a4af66cf6f8d69abc7d6815c868a
- SHA1
  
  e08ea143335718aa416edef9d1cb0b7e91561377
- SHA256
  
  437f9b11af79677b2298f5b8430f542634d5b963193d0791654d3f9af55dbcc8
- SHA512
  
  3882a83604940d4f0dd5cee4e4d7156425a81ec274d88fb3d1e6167962a1c913a615fc2002ad911d5c5f6b24b013eee9c22b2767c021c9249a9bb59fe83d58bd
- SSDEEP
  
  24576:FEtjUoHCP3lNgl+JNY6iNk8S4o3IAMawhrdZyXDpA3P:+SoH83lal+mNk8Sj4AwxMTpOP
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer

© 2018-2025

Terms | Privacy