LummaStealer - Angry Likho

LummaStealer - Angry Likho is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: Event Log Explorer, Event Viewer, CyberChef, DB Browser for SQLite, Wireshark, VirusTotal, Initial Access, Execution, Privilege Escalation, Defense Evasion.

Learning Objectives

Analyze multi-stage malware behavior, decode obfuscated scripts, trace execution flow, and identify evasion, persistence, and exfiltration tactics using forensic tools.

Categories: Endpoint Forensics.

MITRE ATT&CK Tactics: Initial Access, Execution, Privilege Escalation, Defense Evasion.

Tools: Event Log Explorer, Event Viewer, CyberChef, DB Browser for SQLite, VirusTotal, Wireshark.

Difficulty: medium.