lumma | 5da064567dfffd366886fbcd36fd89f76ab79830fb1a5f434b5568df0fcdadb2 | Triage

Sharing

General

Target

setup.exe
Size

1.7MB
Sample

250127-1txg2awra1
MD5

61394f48ee9d0352adcc6509095d5563
SHA1

e393120aad798d3886576f5efc6f5329d1bdb32b
SHA256

5da064567dfffd366886fbcd36fd89f76ab79830fb1a5f434b5568df0fcdadb2
SHA512

ae91b000d962898714cf9e79a428333287cc8c5b053ae8a955011aa8a96f58e55e7a7a92254314f273621e2a6cb7c2a4844b79ba313cd153086b31a69f54df78
SSDEEP

24576:x7iO6zxNJhhC8+9vNbC70Etm23nx8bJPnWpUxNBsqrdROUX1VXcF9XwEtPfxDaE3:A3zw82vN2nibJPnyJqrdRtElpDI

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  setup.exe
- Size
  
  1.7MB
- MD5
  
  61394f48ee9d0352adcc6509095d5563
- SHA1
  
  e393120aad798d3886576f5efc6f5329d1bdb32b
- SHA256
  
  5da064567dfffd366886fbcd36fd89f76ab79830fb1a5f434b5568df0fcdadb2
- SHA512
  
  ae91b000d962898714cf9e79a428333287cc8c5b053ae8a955011aa8a96f58e55e7a7a92254314f273621e2a6cb7c2a4844b79ba313cd153086b31a69f54df78
- SSDEEP
  
  24576:x7iO6zxNJhhC8+9vNbC70Etm23nx8bJPnWpUxNBsqrdROUX1VXcF9XwEtPfxDaE3:A3zw82vN2nibJPnyJqrdRtElpDI
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer