lumma | e3fc82016d019a3879b3ebace9b949bc38212447e3d1775e618a57ef982b41a1

General

Target

2b8bcef4db3812c27d540f4cc146879a.exe
Size

44KB
Sample

250118-k7fhnszmbr
MD5

2b8bcef4db3812c27d540f4cc146879a
SHA1

fe5dba4ff84a9f4b8eb409d15c69d74bd48fe8d7
SHA256

e3fc82016d019a3879b3ebace9b949bc38212447e3d1775e618a57ef982b41a1
SHA512

1688d760b33bd4588b2f3aee94db8a32ff2fe5c390ddc1e868f101bb776e2c5055e67f6564dc66ae96d134768f31159f839e58df1669b9e2c3f9e93b712bd6cb
SSDEEP

768:Srn01NSVwafevGHkiV++I1gqDnJuuAuznQVLNvxu0BvkwIt6BcN4fehnXn:Sr01N7aeGEk+11Tu9AnQVLNppvk9RN4s

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://sordid-snaked.cyou/api

https://awake-weaves.cyou/api

https://wrathful-jammy.cyou/api

https://debonairnukk.xyz/api

https://diffuculttan.xyz/api

https://effecterectz.xyz/api

https://deafeninggeh.biz/api

https://immureprech.biz/api

Targets

- Target
  
  2b8bcef4db3812c27d540f4cc146879a.exe
- Size
  
  44KB
- MD5
  
  2b8bcef4db3812c27d540f4cc146879a
- SHA1
  
  fe5dba4ff84a9f4b8eb409d15c69d74bd48fe8d7
- SHA256
  
  e3fc82016d019a3879b3ebace9b949bc38212447e3d1775e618a57ef982b41a1
- SHA512
  
  1688d760b33bd4588b2f3aee94db8a32ff2fe5c390ddc1e868f101bb776e2c5055e67f6564dc66ae96d134768f31159f839e58df1669b9e2c3f9e93b712bd6cb
- SSDEEP
  
  768:Srn01NSVwafevGHkiV++I1gqDnJuuAuznQVLNvxu0BvkwIt6BcN4fehnXn:Sr01N7aeGEk+11Tu9AnQVLNppvk9RN4s
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Downloads MZ/PE file
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Downloads MZ/PE file

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2