lumma | Installer[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Installer.exe
Size

1.1MB
MD5

a4d4c81fead95eda399ec3739839d6b9
SHA1

2b1cbe5883d614cde60207cc374438ed7af1b7b1
SHA256

d1f92a1ee28a016edfc091be927a75202c851e2aaaf1a56ea3f7b6d0ee81baaf
SHA512

b716bd3d26bba485e63788f82d94e65e2970c0d29677fab8c316accca2ee9a4cbf22b48438a3d0c7be583a726e8ccf7cc4eea9eaf08efaebca7c4ff41f2f24b4
SSDEEP

24576:8CMVAl0Y3xq10UBpt/l0Y3xq10UB1gZ/zMjhPzysSEO:87cj3xAxj3xAA2dydEO

Score

10^/10

lumma

Malware Config

Signatures

Lumma family
lumma

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Installer.exe

Files

Installer.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ