Extracted

• • Target

    reiboot licensed email and registration code free.exe

  • Size

    903.0MB

  • MD5

    9919980b5380785aad93aa04498138a7

  • SHA1

    c4d21a82e70d2f7a552c88d38190d6169da0f9f7

  • SHA256

    542680fc792eaabdcb078f2936f3b102ca201541977e7e8655a215b5145d5d27

  • SHA512

    09672f01c43636643962cf0884cc3d28948526883bcb5c22252bdc86b878ce7a8c006deb02a1182e74f1089e2a0ee3a71623a9e11d0d5e2674c344ac3b0316ed

  • SSDEEP

    1572864:Q7cZfns+Fp3l1jSipMLBr/EFQFLe8syMJvV3P/oFk6MBwFAtoFeWLFhK:cmV

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  • Enumerates processes with tasklist

    discovery
  behavioral1behavioral2