lumma | 11386455a3f76ab6d9d6a2f28f13ac90c2cda3be43996650327ec9e976d9cde2 | Triage

Sharing

General

Target

11386455a3f76ab6d9d6a2f28f13ac90c2cda3be43996650327ec9e976d9cde2.rar
Size

1002KB
Sample

250127-1txg2awrbt
MD5

7ced8ee7d083225c042237436841bdf2
SHA1

f8e4be156fadb2784b9dffaf0e8bd01df0f5437b
SHA256

11386455a3f76ab6d9d6a2f28f13ac90c2cda3be43996650327ec9e976d9cde2
SHA512

46cf4c03847c4825b5b7d906fdeb48bd7d101e11671e0e5cf379cea3357c0cc1cf192665efa762de67e790319f8d76e53f36c015b4f6c2041a019a68f9f1aa0d
SSDEEP

24576:kU45JCk0K6gxAcwjbyVHebfhLkY9G9PofT2lqX5TPC:bWl8TXyVH8hLkY9SPs6qX1PC

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  Satup_32--64Bit/setup.exe
- Size
  
  672.5MB
- MD5
  
  ddf38a78dff47195091c8de0de36c538
- SHA1
  
  a2e36466ec4c620117b7dd6092b3f1f3ead49b7f
- SHA256
  
  d41b10a255d3396292796362e0ec634da7ad0420e9bbe649b7f3244b5e7a7b2a
- SHA512
  
  4ee75549949bb4c557c1ddc4834f36bdb2b383d74fbe315fe36446e8f08b035f3b99724b9923ccecc52e5475b2cfbe9451354887622f1014e0428ed631c00490
- SSDEEP
  
  24576:x7iO6zxNJhhC8+9vNbC70Etm23nx8bJPnWpUxNBsqrdROUX1VXcF9XwEtPfxDaE2:A3zw82vN2nibJPnyJqrdRtElpDIB
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer