Extracted

Extracted

• • Target

    scr1ipt.ps1

  • Size

    7KB

  • MD5

    c44d7216c3cc62db69cbe60ac2e67a1c

  • SHA1

    3a7aedb6c1f4d072c4656dbd49317fe5b38dcc12

  • SHA256

    db1b59a6777f2d0e813317be50541ff20b72dd82711feb6f73c875e58a37343b

  • SHA512

    892cc044bab84a48a953f8a46a55247c12bfb3b34774e106ae4632b3bc7e6f63ec88299c3a685d46c64f49c497a261057acc4184bf3a4d9487fd0e7d2817456d

  • SSDEEP

    192:7qFeaF0diqqeaYzkIJm/5Z0dK7ZhWz7Xhbi9pdM3:79QV83YIcRZ3ZhSGQ

  Score

  10^/10

  lummaexecutionstealer

  • Lumma Stealer

    An infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Blocklisted process makes network request

  • Executes dropped EXE

  • Loads dropped DLL

  • Suspicious use of SetThreadContext

  behavioral1behavioral2behavioral3