lumma | bda1e39b1dbd2a03ed62df0124e3a5f5876a0a94c8f6b5e6f0ff5c802b23fe92 | Triage

Sharing

General

Target

setup.rar
Size

1.0MB
Sample

250125-x569tsypgp
MD5

e8e1d8d6e75f387bd1aeb9f8f8b1d25a
SHA1

a9bce8dccef304ae165e44444bb391fe788b18e1
SHA256

bda1e39b1dbd2a03ed62df0124e3a5f5876a0a94c8f6b5e6f0ff5c802b23fe92
SHA512

564ad8cf8e9659d6c193df5da0848e714e80ef449c47c01ae5e249552a78806d4fb2096b815dce6f35040101af80b8c592149f0def74b7a1f402a3b7e86f1f53
SSDEEP

24576:S30HbcZcn9Niw0CAe2lasjcvKAqZp3zYQTbEwWbJ72clRylD1OUKss:S307t9Niwqe2dpdZp3PnELJ7TkfM

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  setup.rar
- Size
  
  1.0MB
- MD5
  
  e8e1d8d6e75f387bd1aeb9f8f8b1d25a
- SHA1
  
  a9bce8dccef304ae165e44444bb391fe788b18e1
- SHA256
  
  bda1e39b1dbd2a03ed62df0124e3a5f5876a0a94c8f6b5e6f0ff5c802b23fe92
- SHA512
  
  564ad8cf8e9659d6c193df5da0848e714e80ef449c47c01ae5e249552a78806d4fb2096b815dce6f35040101af80b8c592149f0def74b7a1f402a3b7e86f1f53
- SSDEEP
  
  24576:S30HbcZcn9Niw0CAe2lasjcvKAqZp3zYQTbEwWbJ72clRylD1OUKss:S307t9Niwqe2dpdZp3PnELJ7TkfM
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
behavioral1 behavioral2 behavioral3
- Target
  
  setup.exe
- Size
  
  682.6MB
- MD5
  
  37e2641338aa3e1c3eddf8f34e3b6954
- SHA1
  
  c787d1a88d6be85484ed84ee39ef34d40a69627a
- SHA256
  
  cde0170258283e47dee57e049e6f733630982ab6730a293cb114afac73e5fa09
- SHA512
  
  9d87128a8eb82c3f97f67153425fe70b63d6b7a939cd8f89487897557132b4563dcea25859b037e0ef879472d50f3b6984d21d3513bd27d09c5a64c32b470a34
- SSDEEP
  
  24576:iC/DsRRGKi/htmWRR+HA/DOOJb0YsbiLrvBCUS5:iZR/2tVRkg/tJbFsEvB
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral4 behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer

behavioral3

behavioral4

lummadiscoverystealer

behavioral5

lummadiscoverystealer

behavioral6