lumma | 694b7fb3ae0832a1463202b29098f8be7df6e658b0a399b2080f3de68df9ead3 | Triage

Resubmissions

29/01/2025, 16:46

250129-t95p1sskfl 10

29/01/2025, 16:44

250129-t8xb9atjaw 3

29/01/2025, 15:43

250129-s5zsjazrgm 10

Sharing

General

Target

!@Set-𝓤p__6649--!P𝕒$$w0ɾ𝓓##.zip
Size

6.0MB
Sample

250129-t95p1sskfl
MD5

6dc886a4b411ff7d8a16509e7550aad0
SHA1

6bf99d297c028de2a914d12af74deb0ca3e38e35
SHA256

694b7fb3ae0832a1463202b29098f8be7df6e658b0a399b2080f3de68df9ead3
SHA512

9abd15caeaea05de2ca9f4fe794ae3a7c5f0b2df71a0589d7905e174f828a62a076e1e1c9d402172c3f711921d620038973dbe72f40570a03bb7833106c1faf9
SSDEEP

24576:h85w+236YkSh/1uKBwtUz11G2R+TsCna+GOpP+xHVagFim0hXyL:hKx2zrnGZnaWmxHDbsCL

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  #Set-Up--6649__Pα$$C0Ḏe#!.7z
- Size
  
  950KB
- MD5
  
  62e8168d9e65361182c37bf300d21fa9
- SHA1
  
  075e60a8ef3c9e2da8537ae32acb870de2025cc3
- SHA256
  
  f59bc1b64c51d20e719ed21e198637e0344dc6036711002a46b4977fd5fe2617
- SHA512
  
  eea1c92f601b2d14843cd6bade6e3b6a988561d03b44984886fd12e9316b2331e5a7c14051304e68e00f748a7a810b0a4b862cfbfe9d8c7396da92415ad92ed6
- SSDEEP
  
  24576:c85w+236YkSh/1uKBwtUz11G2R+TsCna+GOpP+xHVagFim0hXm:cKx2zrnGZnaWmxHDbsW
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer