lumma | 0f0dcfe29d973d636c6f321c37221fadc5ad8fa0d8c35f6ca82172a823184217 | Triage

Submit
Reports

Overview

overview

Static

static

1

Sonic the ...YG.exe

windows11-21h2-x64

Sharing

General

Target

Sonic the Hedgehog 3 2024.HD.1080p.x264.Dual.YG.exe
Size

867.0MB
Sample

250118-f9ea6svpem
MD5

de044663ff36794737636cfb31587747
SHA1

80c85d3d4757bc7e45f9b6f7ab8e5c035912f307
SHA256

0f0dcfe29d973d636c6f321c37221fadc5ad8fa0d8c35f6ca82172a823184217
SHA512

c7967247886699da493b3480e9f8bf9c8ed85a94c71b3452b6379a7ddbf1108cd6172f6a176edeac3d0aa4cb90325fd9b750f448c440ef6d6d798ee7e9bcf84a
SSDEEP

24576:oAeGulPbyN7o8yjfiytX58PjDbZXU2mhf/zkk15rijl5KvGTLm:Fjc4olfie2DBmJB2zK5

Score

10^/10

lumma discovery stealer

Static task

static1

Behavioral task

behavioral1

Sample

Sonic the Hedgehog 3 2024.HD.1080p.x264.Dual.YG.exe

Resource

win11-20241007-en

lumma discovery stealer

windows11-21h2-x64

19 signatures

300 seconds

Malware Config

Extracted

Family

lumma

C2

https://cloudewahsj.shop/api

https://rabidcowse.shop/api

https://noisycuttej.shop/api

https://tirepublicerj.shop/api

https://framekgirus.shop/api

https://wholersorie.shop/api

https://abruptyopsn.shop/api

https://nearycrepso.shop/api

Targets

- Target
  
  Sonic the Hedgehog 3 2024.HD.1080p.x264.Dual.YG.exe
- Size
  
  867.0MB
- MD5
  
  de044663ff36794737636cfb31587747
- SHA1
  
  80c85d3d4757bc7e45f9b6f7ab8e5c035912f307
- SHA256
  
  0f0dcfe29d973d636c6f321c37221fadc5ad8fa0d8c35f6ca82172a823184217
- SHA512
  
  c7967247886699da493b3480e9f8bf9c8ed85a94c71b3452b6379a7ddbf1108cd6172f6a176edeac3d0aa4cb90325fd9b750f448c440ef6d6d798ee7e9bcf84a
- SSDEEP
  
  24576:oAeGulPbyN7o8yjfiytX58PjDbZXU2mhf/zkk15rijl5KvGTLm:Fjc4olfie2DBmJB2zK5
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Drops startup file
- Executes dropped EXE
- Enumerates processes with tasklist
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

© 2018-2025

Terms | Privacy