lumma | hxxps://www[.]mediafire[.]com/folder/uml3a9raehtf2/des

Resubmissions

10/04/2025, 18:05

250410-wn87esyyft 10

10/04/2025, 18:01

250410-wl6nhsymy2 8

Sharing

Copy URL

Twitter E-mail

General

Target

https://www.mediafire.com/folder/uml3a9raehtf2/des
Sample

250410-wn87esyyft

Score

10^/10

Malware Config

Extracted

Family

lumma

https://clarmodq.top/qoxo

https://soursopsf.run/gsoiao

https://changeaie.top/geps

https://easyupgw.live/eosz

https://liftally.top/xasj

https://upmodini.digital/gokk

https://salaccgfa.top/gsooz

https://ezestmodp.top/zeda

https://xcelmodo.run/nahd

Targets

- Target
  
  https://www.mediafire.com/folder/uml3a9raehtf2/des
Score

10^/10

lumma discovery spyware stealer
- Lumma Stealer, LummaC
  Lumma or LummaC is an infostealer written in C++ first seen in August 2022.
  stealer lumma
- Lumma family
  lumma
- Loads dropped DLL
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer, LummaC

Lumma family

Loads dropped DLL

Accesses cryptocurrency files/wallets, possible credential harvesting

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v16

Tasks

static1

urlscan1

behavioral1