lumma | 7396387cd5bebdafed26cb32d52ea4c780b08e8bb358db7b20e743448391e016 | Triage

Submit
Reports

Overview

overview

Static

static

1

Loader.zip

windows7-x64

1

Loader.zip

windows10-2004-x64

Sharing

General

Target

Loader.zip
Size

156.3MB
Sample

250121-xwkpgaxqfr
MD5

07c25292f2c72370b9798591d0ec42a7
SHA1

7262e0214d8266f234a8db925900ba46b4fec8ff
SHA256

7396387cd5bebdafed26cb32d52ea4c780b08e8bb358db7b20e743448391e016
SHA512

f5cccb9a3f663fd168d1242845a7d32d720c7671d2e2efc253e601b53878445c7f3504a416394c32c9d83469a409a631253c8a9a75ddefefaf7ef57bc8115066
SSDEEP

3145728:5SjEVsBz/OLgeHkmeZDldmQj+0ixyCcsVLpsGnH7GTslm:5Sj3DOLZDeZDl0A1sHcsTtnwkm

Score

10^/10

lumma discovery stealer

Static task

static1

Behavioral task

behavioral1

Sample

Loader.zip

Resource

win7-20240903-en

windows7-x64

3 signatures

300 seconds

Behavioral task

behavioral2

Sample

Loader.zip

Resource

win10v2004-20241007-en

lumma discovery stealer

windows10-2004-x64

19 signatures

300 seconds

Malware Config

Extracted

Family

lumma

C2

https://uncoverreduop.cyou/api

Targets

- Target
  
  Loader.zip
- Size
  
  156.3MB
- MD5
  
  07c25292f2c72370b9798591d0ec42a7
- SHA1
  
  7262e0214d8266f234a8db925900ba46b4fec8ff
- SHA256
  
  7396387cd5bebdafed26cb32d52ea4c780b08e8bb358db7b20e743448391e016
- SHA512
  
  f5cccb9a3f663fd168d1242845a7d32d720c7671d2e2efc253e601b53878445c7f3504a416394c32c9d83469a409a631253c8a9a75ddefefaf7ef57bc8115066
- SSDEEP
  
  3145728:5SjEVsBz/OLgeHkmeZDldmQj+0ixyCcsVLpsGnH7GTslm:5Sj3DOLZDeZDl0A1sHcsTtnwkm
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lummadiscoverystealer

© 2018-2025

Terms | Privacy