Extracted

Extracted

• • Target

    file (4).7z

  • Size

    10.5MB

  • MD5

    9861bea09429454b4eafc07e6909e5f0

  • SHA1

    f4a66b2f2a7bc75c50a489b517438269931b0670

  • SHA256

    71b00657f156b1b2a4aed6986abe0bd805e1277b739eb36cc75d70f675cb0ad8

  • SHA512

    a68188d19b5d7fc4c3b5f2726432ba928e0f4380be6eb9356e43e2811353dc28109a850b2156058febd587ac68ffa728a8bd287c1ccf1624b84a19fb72418171

  • SSDEEP

    196608:LSfzUDC7twljDKb9nf6FO7q2XIn8y3GANJxije/LZOuRaFVwa1tDwlxcxANwfM70:LSb2Y36FO7qlXWANfljZOuRabwa1JUxU

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Enumerates processes with tasklist

    discovery

  • Suspicious use of SetThreadContext

  behavioral1