lumma | 21530a8105de2c1d41dc570a51d9e23b2fb660615af9bd05171a04f383175895

General

Target

setup.exe
Size

11.2MB
Sample

250301-p56z3a1vft
MD5

022b8efaa66ed7474d26927a6b3dbbc7
SHA1

571ae028da18e90f02482b1b7c27537085db7f16
SHA256

21530a8105de2c1d41dc570a51d9e23b2fb660615af9bd05171a04f383175895
SHA512

d964dfae0c29ece9a24bf06fa2a3859ca50157605b0ab768e35083e6215300b9a1c8fd24b160e7997fe160262426cadf7e82d6f74bfb9090b128fa3edd9f67a3
SSDEEP

196608:qE70f66Hg5BLtbGGNNCuuG2o2fNqZCCjOqnN:qE73TbGGOuuG+fNqr

Score

10^/10

Malware Config

Extracted

Family

lumma

C2

https://p3ar11fter.sbs/api

https://3xp3cts1aim.sbs/api

https://owner-vacat10n.sbs/api

https://peepburry828.sbs/api

https://p10tgrace.sbs/api

https://befall-sm0ker.sbs/api

https://librari-night.sbs/api

https://processhol.sbs/api

https://oak-smash.cyou/api

Targets

- Target
  
  setup.exe
- Size
  
  11.2MB
- MD5
  
  022b8efaa66ed7474d26927a6b3dbbc7
- SHA1
  
  571ae028da18e90f02482b1b7c27537085db7f16
- SHA256
  
  21530a8105de2c1d41dc570a51d9e23b2fb660615af9bd05171a04f383175895
- SHA512
  
  d964dfae0c29ece9a24bf06fa2a3859ca50157605b0ab768e35083e6215300b9a1c8fd24b160e7997fe160262426cadf7e82d6f74bfb9090b128fa3edd9f67a3
- SSDEEP
  
  196608:qE70f66Hg5BLtbGGNNCuuG2o2fNqZCCjOqnN:qE73TbGGOuuG+fNqr
Score

10^/10

lumma discovery stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2