lumma | b15cc222989fb3f1be897395b6854d36073ec06fa5b54c6e4efa7d89221265fb | Triage

Sharing

General

Target

Folder
Size

155KB
Sample

250127-zfy82avkgz
MD5

3a230c4bf21843a79040e219b12f2863
SHA1

ac02f083f845cda9c64e46a757bed5aef4a610d1
SHA256

b15cc222989fb3f1be897395b6854d36073ec06fa5b54c6e4efa7d89221265fb
SHA512

6bf22bf8a94ac357f7992c8a81c995804f69842a9f027f4881f1c202a047aed44d7f6202ade9a125f1f7308836476bb2d2905f231a339dc738ef6fe784806d83
SSDEEP

3072:MIHm8kpp+NLZaoA9V+hg3XcqJ0avMpzi+7qqHpBSY:S0NLZaoA9V+hg3XcqJ0eMpzi+kY

Score

10^/10

lumma discovery execution stealer

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  Folder
- Size
  
  155KB
- MD5
  
  3a230c4bf21843a79040e219b12f2863
- SHA1
  
  ac02f083f845cda9c64e46a757bed5aef4a610d1
- SHA256
  
  b15cc222989fb3f1be897395b6854d36073ec06fa5b54c6e4efa7d89221265fb
- SHA512
  
  6bf22bf8a94ac357f7992c8a81c995804f69842a9f027f4881f1c202a047aed44d7f6202ade9a125f1f7308836476bb2d2905f231a339dc738ef6fe784806d83
- SSDEEP
  
  3072:MIHm8kpp+NLZaoA9V+hg3XcqJ0avMpzi+7qqHpBSY:S0NLZaoA9V+hg3XcqJ0eMpzi+kY
Score

10^/10

execution lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

lummadiscoveryexecutionstealer

behavioral4