← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Behind the Attack: LUMMA Malware - Perception Point
WHITE feisty-swim1410 2023-12-01 Modified: 2023-12-01
17
IOCs
MEDIUM VOLUME
urlsprocess idspidspointviewjavascript fileurl redirectlummac languagewindows media
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Lumma Stealer
Indicators of Compromise (6 / 17 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
URL http://taretool.pw/api 2023-12-01
URL http://www.patrickforeilly.com/eco/ 2023-12-01
URL https://fuelrescue.ie/eco/ 2023-12-01
URL https://robertoscaia.com/eco 2023-12-01
URL https://www.patrickforeilly.com/eco/ 2023-12-01
URL https://www.robertoscaia.com/eco/ 2023-12-01
References (1)
↗ https://perception-point.io/blog/behind-the-attack-lumma-malware/?nstoken=7SOY%2FFbMog3%2FTQb%2FLdUXz8kbPMP4wnAZLmaTwIfEk7gHkThOMV%2F%2Bf9OfldJ1%2F3qCqkuy%2FMf0crIahPgwOQXOw9aLYYwIvTHkYp8fJ7uOEAkRkZe6Ouj5MQX8YEplPF%2BmEf32zxdS71Y%2BGUizs21VXmUREJFVVObhXHteu3S25tlB6sZ5JswTx4F%2Fj98vSZXM00lrw3lEIkTh6Qtd6A8gJLCpTPZl%2FmEpaRhM91dPHWf%2BXSHMkglYxPnN9Ri3wSBiR7%2BhUBlTNigsuH3Pwt%2BtLOK22fkPFqemB4P5mKZRfGbvS%2FDm4q4JP7UgMkJ49cLb%2FSetwdhfiwjyfdLAiv1KO2UY5Zcgu47H7kNZY6W0jmNnTNHqq3PPBmXtnuGSd%2F2Ym6yCBpJ2F1L3WyzpuK5o