Extracted

• • Target

    c6822c06bb28f572a7a771ea8d1ed05d63678c827202fc383bbe137875f3bafc.zip

  • Size

    352KB

  • MD5

    e32fefb489db7b4410dcd97e9af63fdb

  • SHA1

    38c6d50daa5b82a128b21002afee691f4f7028d2

  • SHA256

    c6822c06bb28f572a7a771ea8d1ed05d63678c827202fc383bbe137875f3bafc

  • SHA512

    982ca31fdc2d95f31a45d5f49c2fa98780bb28f141b1481967e6614e4cbedfb6d207714836c1830feaccb99080393d1d34e77041ab17dd25203715c4f18bfe22

  • SSDEEP

    6144:u88f5FvrlHEM9Ysfbaw1fNiN9RHd9wbsbb6TijRGEwLnJwi+Y/ABKiosHp1klnn/:uPLSnwY9bY8OWFGE6JwK/sesILA5+

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • .NET Reactor proctector

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2