lumma | 297074d9eb07e7b2c03cdb5894987629b0b732112402774a4e729b7332a31bae | Triage

Sharing

General

Target

Software.exe
Size

469KB
Sample

250131-nywp3svlay
MD5

e1e2478c53b67c77919a24d6ec462c3c
SHA1

40963a3b91c411d079607ec8623ce817bb9cfa7f
SHA256

297074d9eb07e7b2c03cdb5894987629b0b732112402774a4e729b7332a31bae
SHA512

713547b7fb3f722885d45e02582cff8847477f47bf4be2dfa31377ee3d74a473b4ea3d05c69527ffc08bd2da35645590aa60b32b3972b76215a52cd805635092
SSDEEP

6144:VKghTpr9EVw+J5iLJadw0gZSMVQqAn0/pOpyuwt+UXy6zWkllSwklAV60tbPPai:jpryJULJadw7BxuA+UCSTl0M6enai

Score

10^/10

lumma discovery stealer

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  Software.exe
- Size
  
  469KB
- MD5
  
  e1e2478c53b67c77919a24d6ec462c3c
- SHA1
  
  40963a3b91c411d079607ec8623ce817bb9cfa7f
- SHA256
  
  297074d9eb07e7b2c03cdb5894987629b0b732112402774a4e729b7332a31bae
- SHA512
  
  713547b7fb3f722885d45e02582cff8847477f47bf4be2dfa31377ee3d74a473b4ea3d05c69527ffc08bd2da35645590aa60b32b3972b76215a52cd805635092
- SSDEEP
  
  6144:VKghTpr9EVw+J5iLJadw0gZSMVQqAn0/pOpyuwt+UXy6zWkllSwklAV60tbPPai:jpryJULJadw7BxuA+UCSTl0M6enai
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer