lumma | 63e196078f2acdb826546881e3ac98bc2568ee480957492cf18871c5ecfec455 | Triage

Sharing

General

Target

ptlanmon-setup__2.6.4.exe
Size

670.8MB
Sample

250127-t6zdtsxnhx
MD5

f9c40e459c252f838912cdfcb82ff085
SHA1

a51b401e98a04a6991abb40415d54cf586045d23
SHA256

63e196078f2acdb826546881e3ac98bc2568ee480957492cf18871c5ecfec455
SHA512

0d4aca4450f3efd2227636025595dac5a9aab9081b1e9f63bb297be5f019959c9f1c7ae92cb272ad0a63b956dab1933f04aee6859f9f1c9107562519059ca72b
SSDEEP

98304:zdBrSuI7iB20OiRRclberjNZizBADDFX/dDDFK:zdBrN0Q3clKPwADB1DQ

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  ptlanmon-setup__2.6.4.exe
- Size
  
  670.8MB
- MD5
  
  f9c40e459c252f838912cdfcb82ff085
- SHA1
  
  a51b401e98a04a6991abb40415d54cf586045d23
- SHA256
  
  63e196078f2acdb826546881e3ac98bc2568ee480957492cf18871c5ecfec455
- SHA512
  
  0d4aca4450f3efd2227636025595dac5a9aab9081b1e9f63bb297be5f019959c9f1c7ae92cb272ad0a63b956dab1933f04aee6859f9f1c9107562519059ca72b
- SSDEEP
  
  98304:zdBrSuI7iB20OiRRclberjNZizBADDFX/dDDFK:zdBrN0Q3clKPwADB1DQ
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

lummadiscoverystealer