ioc[.]one - OSINT Cyber Threat Intelligence Database

Lumma Malware

Tags

country:	Russia
attack-pattern:	Data Model Hooking - T1617 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Access Token Manipulation - T1134 Browser Extensions - T1176 Connection Proxy - T1090 Hooking - T1179 Powershell - T1086 Hooking

Show in Graph

Common Information

Type	Value
UUID	9a2e4cc0-8295-4b15-8e3c-7be487682732
Fingerprint	ae3e6dd588338f92
Analysis status	DONE
Considered CTI value	2
Text language
Published	Sept. 5, 2024, 1:25 p.m.
Added to db	Sept. 5, 2024, 3:55 p.m.
Last updated	Nov. 17, 2024, 6:53 p.m.
Headline	Lumma Malware
Title	Lumma Malware
Detected Hints/Tags/Attributes	41/2/18

Source URLs

	Redirection	Url
Details	Source	https://medium.com/@ninesage/lumma-malware-defense-mechanism-5560c3ccf3fd?source=rss------malware-5
Details	Source	https://medium.com/@ninesage/lumma-malware-defense-mechanism-5560c3ccf3fd?source=rss------reverse_engineering-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	171	✔	Malware on Medium	https://medium.com/feed/tag/malware	2024-08-30 22:08
Details	172	✔	Reverse Engineering on Medium	https://medium.com/feed/tag/reverse-engineering	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	File	12		bcryptprimitives.dll
Details	File	533		ntdll.dll
Details	File	9		powrprof.dll
Details	File	130		ws2_32.dll
Details	md5	1		1AAE8BF580C846F39C71C05898E57E88
Details	sha256	1		f3546a0538a7b90ec1383c4f63d995ed9a725e6b791deb8e1a00d79ec1dd5203
Details	sha256	1		7764e7022dcac1b5779d1f96fc05af5c1fee394aaff8a3a7e9a881e1a1b163a3
Details	sha256	1		be230ad12d37dc1a36c390a71e02bd0d7aa00aca531478715ec55f661d2c0a6d
Details	sha256	1		ab81cbc7c77e006898d15f2a940d2a4e3729a5456adef70c3c470fd71fa13c22
Details	sha256	1		e1ccac7657ec4d125e6e5a287bcf841f5d2fc6addbcf12726f22cbd8172eea4d
Details	sha256	1		a622d3d03263e89dcf1845fb6fa2e9d12bfd9151880bfd78e6fe25d4ec1ce1c4
Details	sha256	1		6166e25f5487eff0d4989aae29738ecb7292beeee44681533b71a6803e59e4cd
Details	sha256	1		eeab08dda8506e8280ab14e0b82b0553578a149e7f50ba3898727070d27de78d
Details	sha256	1		3e67f4a7d14b832ff2a2433e9cf0f6f5720821f67148a87c0ee2595a20c96c68
Details	sha256	1		6ea0dc76cb06f11b1725c1b23142a1e38c8d9b0955f7e5dacf07cb3d5ebf98f7
Details	sha256	1		2e4c13e2b3ead6a58bc460e6c00855938ddb64e08bbff9373b1a572228473c6c
Details	sha256	1		b18903edcf69b3c6002596c4cff5e9d436233a77efd5849e560dffcd22bda2cb
Details	MITRE ATT&CK Techniques	116		T1134