lumma | a9fa29605afd47c0891331b5a0f18ef965342f2b23805405d2365169d131934e | Triage

Sharing

General

Target

Luna.zip
Size

585KB
Sample

250125-xmasxawpa1
MD5

5b645725301103b99b95ec7b39938752
SHA1

1cbfee999e263ec8b9b6b64288004ff26c0e4a7e
SHA256

a9fa29605afd47c0891331b5a0f18ef965342f2b23805405d2365169d131934e
SHA512

fb288d4a393c0fe518c848c9281daa0202f389c3a843c5383c08e9562c152aa32db918cd9ee9a08097ce7e31b8ca01a65843499e13261b79d5e4e49ef2964876
SSDEEP

12288:enHY6R+JQXjAnN3ykQO4LHo99mwBT6kIvqEwwLnn7DL0bIB8FRX/:QRTARQOSHo99mwtRIv9HnAU49/

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  Luna.exe
- Size
  
  549KB
- MD5
  
  2b3d1b9dfb2460cd41b87954846a0c3d
- SHA1
  
  ceade66dfc232c1701e447265171a5c94808738e
- SHA256
  
  91873ab0956c49f36c5e2d7842af8f5c7daa3ef41e0c0f6a7863e83f2be0a279
- SHA512
  
  066f306fb0c0d357b99e056a8446476b1d8b5e611f881386776a0fbfcbd22e6d67db6213fc34238b3964fcfedf1faae83b7c9f0295a61e1e46858820d6ad3df3
- SSDEEP
  
  12288:+Y6R+JQXjAnN3ykQO4LHo99mwBT6kIvqEwwLnn7DL0bIB8FRXa:uTARQOSHo99mwtRIv9HnAU49a
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2
- Target
  
  client.dll
- Size
  
  36KB
- MD5
  
  702348a3919a13f056ab52a8085c5b5b
- SHA1
  
  983d64793741ed973ddafdd9a9575758a25903e2
- SHA256
  
  8c5f289d8817f1ff725dcca44b93a0a9bebdbb933750ebe81e91c33c561c875c
- SHA512
  
  77de57951a962db3185666b43f3a8f7237b21f395d47586bc94f8adbe7f9b4ca3e1c79fe78f82b5f989d381359a83931122a3c95b0e0a9e8bf13bcfa8ea1eba6
- SSDEEP
  
  384:Ghqvps9SA75hm9PLjkGwkCt0PFSExtZYN0GgZqsPm2AXV6Eb8R7D:Gsvp4ShPsGwRR0GgZ3kXV6Eb8R7D
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer

behavioral3

behavioral4