lumma | a2480b11ad87b6c98776b74d0ca75739559c6d357ddcc786bbf5565f91154095 | Triage

Sharing

General

Target

Installer.exe
Size

541KB
Sample

250126-sb53fsvkas
MD5

c13ae6f97f5518fe8ca5b09f6aeb4c68
SHA1

d9219dade233d3cb0c59f57e4400dbff8e08eb66
SHA256

a2480b11ad87b6c98776b74d0ca75739559c6d357ddcc786bbf5565f91154095
SHA512

d5edf8397b686cdc12fe901739c88769386c06e108e8e61a9e1b14cf1abc78ac9edefc0b9e4b8d5595e47fdb0c2ef9155010ce643ebe1913b0a207620e567506
SSDEEP

12288:jY6R+JQXjAnN3ykQO4L3yq7HFe9/jAoaLSsysL2nmb0j:1TARQOS3ySY9/jA2l+0

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  Installer.exe
- Size
  
  541KB
- MD5
  
  c13ae6f97f5518fe8ca5b09f6aeb4c68
- SHA1
  
  d9219dade233d3cb0c59f57e4400dbff8e08eb66
- SHA256
  
  a2480b11ad87b6c98776b74d0ca75739559c6d357ddcc786bbf5565f91154095
- SHA512
  
  d5edf8397b686cdc12fe901739c88769386c06e108e8e61a9e1b14cf1abc78ac9edefc0b9e4b8d5595e47fdb0c2ef9155010ce643ebe1913b0a207620e567506
- SSDEEP
  
  12288:jY6R+JQXjAnN3ykQO4L3yq7HFe9/jAoaLSsysL2nmb0j:1TARQOS3ySY9/jA2l+0
Score

10^/10

discovery lumma stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lummadiscoverystealer