lumma | ffcba56c943bd2e56ccc64c5c7b2b8d30d6068ef97a2c7245b54a3281bd75d48 | Triage

Sharing

General

Target

.exe
Size

11.7MB
Sample

250124-rmse3aslf1
MD5

738e599d9b27830cb7920e3cfdeabd43
SHA1

a6f7881df9c273d8e4444fb3d242c0a8b3b00965
SHA256

ffcba56c943bd2e56ccc64c5c7b2b8d30d6068ef97a2c7245b54a3281bd75d48
SHA512

60d5fd6f36a1ad60c49401425f89e36b87db5afcd968931eb4bf19bd5d6216564282ffb6ee9dd1315d09ef7fb953748f3b0949090c31dae1daf1a140bcdffd23
SSDEEP

196608:oZdc01IU22ea1ulaUHXrVua+k/P5GEVbkagWQyz0WHu+ZQINV45Wpy:UT/mHaUBzdP5/kagWSWLd4

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://rapeflowwj.lat/api

https://crosshuaht.lat/api

https://sustainskelet.lat/api

https://aspecteirs.lat/api

https://energyaffai.lat/api

https://necklacebudi.lat/api

https://discokeyus.lat/api

https://grannyejh.lat/api

https://recessiowirs.click/api

Targets

- Target
  
  .exe
- Size
  
  11.7MB
- MD5
  
  738e599d9b27830cb7920e3cfdeabd43
- SHA1
  
  a6f7881df9c273d8e4444fb3d242c0a8b3b00965
- SHA256
  
  ffcba56c943bd2e56ccc64c5c7b2b8d30d6068ef97a2c7245b54a3281bd75d48
- SHA512
  
  60d5fd6f36a1ad60c49401425f89e36b87db5afcd968931eb4bf19bd5d6216564282ffb6ee9dd1315d09ef7fb953748f3b0949090c31dae1daf1a140bcdffd23
- SSDEEP
  
  196608:oZdc01IU22ea1ulaUHXrVua+k/P5GEVbkagWQyz0WHu+ZQINV45Wpy:UT/mHaUBzdP5/kagWSWLd4
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer