lumma | 4491f6bcadc775dc75ae0486f0b48e463a70cbe8774b9b265210ecb58adff1f3 | Triage

Sharing

General

Target

4491f6bcadc775dc75ae0486f0b48e463a70cbe8774b9b265210ecb58adff1f3
Size

4.0MB
Sample

250120-axrsvatlal
MD5

61537b7c1bb9267a306e06fa75634c31
SHA1

eb466b98297e8cd1e0685423239ee34c1cee570c
SHA256

4491f6bcadc775dc75ae0486f0b48e463a70cbe8774b9b265210ecb58adff1f3
SHA512

982ec8754415a44ddc707594345268c0873ea8b94522a24f985792ec70326758f2cc34354912b2fef83498093d940b9d90a689d8e40f2be308fa3c2ac505c470
SSDEEP

98304:60WFsTuRN2zazBLlLvOc1Pgd1E20fzsFvOAM:/WFsTuRN2zahf1Y7E

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://welltodobaoz.shop/api

Targets

- Target
  
  4491f6bcadc775dc75ae0486f0b48e463a70cbe8774b9b265210ecb58adff1f3
- Size
  
  4.0MB
- MD5
  
  61537b7c1bb9267a306e06fa75634c31
- SHA1
  
  eb466b98297e8cd1e0685423239ee34c1cee570c
- SHA256
  
  4491f6bcadc775dc75ae0486f0b48e463a70cbe8774b9b265210ecb58adff1f3
- SHA512
  
  982ec8754415a44ddc707594345268c0873ea8b94522a24f985792ec70326758f2cc34354912b2fef83498093d940b9d90a689d8e40f2be308fa3c2ac505c470
- SSDEEP
  
  98304:60WFsTuRN2zazBLlLvOc1Pgd1E20fzsFvOAM:/WFsTuRN2zahf1Y7E
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer