Overview

overview

10

Static

static

1

URLScan

urlscan

https://raw.githubus...

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://raw.githubusercontent.com/FluxusDevs/Fluxus-Roblox-Executor/refs/heads/main/Fluxus%20V7.exe

  • Sample

    241002-bpa1sszdpm

Score
10/10
lummadefense_evasiondiscoverystealer

Malware Config

Extracted

Family

lumma

C2

https://covvercilverow.shop/api

https://surroundeocw.shop/api

https://abortinoiwiam.shop/api

https://pumpkinkwquo.shop/api

https://priooozekw.shop/api

https://deallyharvenw.shop/api

https://defenddsouneuw.shop/api

https://racedsuitreow.shop/api

https://roaddrermncomplai.shop/api

Targets

    • Target

      https://raw.githubusercontent.com/FluxusDevs/Fluxus-Roblox-Executor/refs/heads/main/Fluxus%20V7.exe

    Score
    10/10
    lummadefense_evasiondiscoverystealer

    • Lumma Stealer, LummaC

      Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

      stealerlumma

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks