Names | LummaC2 Lumma Stealer | |
Category | Malware | |
Type | Info stealer | |
Description | (Cofense) Lumma Stealer, also known as LummaC2, is a subscription-based information stealer that was first seen in 2022. It is written in C and has a wide array of capabilities. This malware is primarily used for stealing cryptocurrency wallets and sensitive information such as usernames and passwords. Lumma Stealer also has the ability to deliver additional payloads. | |
Information | <https://cofense.com/blog/luxury-hotels-remain-target-of-social-engineering-attack/> <https://securelist.com/crimeware-report-asmcrypt-loader-lumma-stealer-zanubis-banker/110512/> <https://outpost24.com/blog/lummac2-anti-sandbox-technique-trigonometry-human-detection/> <https://perception-point.io/blog/behind-the-attack-lumma-malware/> <https://www.fortinet.com/blog/threat-research/lumma-variant-on-youtube> |
Last change to this tool card: 17 January 2024
Download this tool card in JSON format
Previous: Luminosity RAT
Next: LUNCHMONEY
Changed | Name | Country | Observed | ||
APT groups | |||||
↳ Subgroup: Scattered Spider | [Unknown] | 2022-Jan 2024 | |||
Other groups | |||||
Scully Spider, TA547 | [Unknown] | 2017-Mar 2024 |
2 groups listed (1 APT, 1 other, 0 unknown)
Digital Service Security Center Follow us on |
Report incidents |
|
+66 (0)2-123-1227 | ||
[email protected] |