← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
LummaC2 Stealware
WHITE feisty-swim1410 2023-11-16 Modified: 2023-12-16
82
IOCs
HIGH VOLUME
The LummaC2 stealer malware strain has been identified as being used by threat actors operating under different aliases, according to a report published by the UK-based security firm Verdant.
redlinesectopratlummac2
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
RedLine SectopRAT LummaC2
Indicators of Compromise (9 / 82 total)
All domain FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 572ad2a0e80837d4ed20039b36257d1bba9886fc SHA1 of 51925d36298a3d9ceac6067fdc1ba1f799ef5c53553be95d6827192df0700d80 2023-11-16
FileHash-SHA1 2106fc1e0f83df0f658934129a5a374948cc97a0 SHA1 of c9094685ae4851fd5a5b886b73c7b07efd9b47ea0bdae3f823d035cf1b3b9e48 2023-11-16
FileHash-SHA1 282dd3d008f4b4272111c31d0089b595d3e5b7bb SHA1 of 93015b567e5ba8266205fb1183a6a26a3b950b67fd1366639ae232206d972f77 2023-11-16
FileHash-SHA1 7419adab699c1f9e2efecc9a5e311fa3db58ae95 SHA1 of 0dc2ed3a68353261b09be0a93070ccfb23f48786be6ba548ed0f9c373befe110 2023-11-16
FileHash-SHA1 7b6545a0e9707b7ed1c75178a359b1b5a49503bf SHA1 of 4d5d3f9967db0ed61f9e48de6bab3f5b0a9f30e58da52e8b0dd8601e908f4743 2023-11-16
FileHash-SHA1 9437c6d4240d47163f1c259c21a9622344affe08 SHA1 of 1522a865e9d583c3581fc19cafef5a41a7c7d0f759aaead3364045f300202305 2023-11-16
FileHash-SHA1 c050a7506995a91562dc2bb69f12a66ca586675d SHA1 of 33c1d451e3a186d8734b27319b80036976cca882a6c531ddde9ad814cf42ef93 2023-11-16
FileHash-SHA1 c53c694c0c0e99d31da73d1ef15e83e501f4fa10 SHA1 of 6e04b543db11048a0b57fe786c0c52441ded217252cd6564fc63ff84ee486f10 2023-11-16
FileHash-SHA1 ef7b6e026c045e5fb7989db1feb4f21e5c8c49e6 SHA1 of 72d2536c7a849a18bee4c3b574873371f05e8fcbd31f2b922f3231dbdce3f632 2023-11-16
References (1)
↗ https://www.quorumcyber.com/wp-content/uploads/2023/09/Quorum-Cyber-Lumma-Stealer-Malware-Report-TI.pdf