lumma | d0710b55aa4f4424d4b14ad320e6615dc230f2af271a1f260ea475141f9d0091 | Triage

Submit
Reports

Overview

overview

Static

static

1

setup.exe

windows7-x64

setup.exe

windows10-2004-x64

Sharing

General

Target

setup.exe
Size

80.0MB
Sample

250131-qtw66aypgj
MD5

c804e1074af9d7cffa16e6bd084bea42
SHA1

dba96c1d8dd56520fcbc65b1d1dd0a8da91e81c5
SHA256

d0710b55aa4f4424d4b14ad320e6615dc230f2af271a1f260ea475141f9d0091
SHA512

950a9a8822cb6df38d710cf1341a79ce25e76e8f145471167dda49f8e6c9e9b22a88836d51ee69b4770c69cef3d161be7fc408de336d1d8a53f1bbad40accadd
SSDEEP

24576:0/8vj/qTTY54U9wn04+riuApVGgH7x86jeIGyghi:HKrHn8Xy3HtjePymi

Score

10^/10

lumma discovery stealer

Static task

static1

Behavioral task

behavioral1

Sample

setup.exe

Resource

win7-20241010-en

lumma discovery stealer

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

setup.exe

Resource

win10v2004-20250129-en

lumma discovery stealer

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

lumma

C2

https://toppyneedus.biz/api

Targets

- Target
  
  setup.exe
- Size
  
  80.0MB
- MD5
  
  c804e1074af9d7cffa16e6bd084bea42
- SHA1
  
  dba96c1d8dd56520fcbc65b1d1dd0a8da91e81c5
- SHA256
  
  d0710b55aa4f4424d4b14ad320e6615dc230f2af271a1f260ea475141f9d0091
- SHA512
  
  950a9a8822cb6df38d710cf1341a79ce25e76e8f145471167dda49f8e6c9e9b22a88836d51ee69b4770c69cef3d161be7fc408de336d1d8a53f1bbad40accadd
- SSDEEP
  
  24576:0/8vj/qTTY54U9wn04+riuApVGgH7x86jeIGyghi:HKrHn8Xy3HtjePymi
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoverystealer

behavioral2

lummadiscoverystealer

© 2018-2025

Terms | Privacy