Extracted

• • Target

    NEAS.6ad53cc99cdf1eafaa1bdc01f2bc54d0_JC.exe

  • Size

    7.0MB

  • MD5

    6ad53cc99cdf1eafaa1bdc01f2bc54d0

  • SHA1

    9aa3f099a94aceaae9fc928bdf33f84990b83b15

  • SHA256

    c818ff8004fd49b58c6fe7674bf8c1ca9379ac3fb30be05cb97cb738614112b7

  • SHA512

    6bdef26896d54ef4aa1d87a8c62a36a929e9719f63f286b6db88e640e3a9b6a7777d97b44f22e5900fe28113be9ce8a454a01220292c32ace8c78f122a08dbd9

  • SSDEEP

    196608:ZBlje8dZjOln9dFu5MqhrpcTdPcrVF8GTQ:AsopqMqhr+EVDc

  Score

  10^/10

  lummaspywarestealer

  • Detect Lumma Stealer payload V2

  • Lumma Stealer

    An infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Suspicious use of NtSetInformationThreadHideFromDebugger

  • Suspicious use of SetThreadContext

  behavioral1behavioral2