lumma | 1a269339c307d963997a3232839f356ce77e099213414d8d0beb632f8cb4c01d | Triage

Sharing

General

Target

@#❢Ǵ𝕖𝔱-𝕊𝕖𝕥𝓤𝕡-9754__ℙǎ$$𝕨𝟘ɾ𝔻@!!.7z
Size

8.5MB
Sample

250328-s76nvsx1at
MD5

c69ae3488671bc153d315f62cc148772
SHA1

fd850bfd9aae61a6df2a387df68c58d3f7a62752
SHA256

1a269339c307d963997a3232839f356ce77e099213414d8d0beb632f8cb4c01d
SHA512

12f51a2de3a7aed0bdb30ab433c2b17a2cae7341a993d3af1d86659852f1cf1464eff11e488ce4672a2125e2af1d3742c1dd110f8da9ca100ed9743d8042773a
SSDEEP

196608:aIkQL5Xid7mPBOAF7cboaQToj1AfoOtEHauws3bjL2W+rf6oEaWi168oG3mq:DkQL5ypoQ+c0aQTy1ABxeL2W+rfRl160

Score

10^/10

lumma discovery link pdf spyware stealer

Malware Config

Extracted

Family

lumma

C2

https://saturnoy.life/ASzos

https://oreheatq.live/gsopp

https://castmaxw.run/ganzde

https://tweldorae.digital/geds

https://steelixr.live/aguiz

https://advennture.top/GKsiio

https://targett.top/dsANGt

https://smeltingt.run/giiaus

https://ferromny.digital/gwpd

Targets

- Target
  
  Setup.exe
- Size
  
  147KB
- MD5
  
  0ef6576560aa54889e4230c0ac2da560
- SHA1
  
  9f132cfa8f1db8932c9ad0db9cafd4ff0216b3c5
- SHA256
  
  c5a1b343d52e741fd91e6d71065a2bf3f2a1119b258a84e4dc026e705da828ac
- SHA512
  
  4a309e28338dfc039855534bd3b51632164f2f7effa2b574d2c75afc32a14ae574ef9751466224d3f2b0805de85c4303cc2d07988714d8488911538f0b0cd4bb
- SSDEEP
  
  768:2qoXya+G8TyC8t8z+aLx1lMtsPBcq9Sbh9SbLAEpYinAMx8iQP3pXYiui8AMxkEQ:J8yPTyC8ayLspcqCOJ7HxbQ17ZaxZO
Score

10^/10

lumma discovery spyware stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Reads user/profile data of local email clients
  Email clients store some user data on disk where infostealers will often target it.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

lummadiscoveryspywarestealer

behavioral2

lummadiscoveryspywarestealer