Extracted

• • Target

    Setup.exe

  • Size

    1.1MB

  • MD5

    873f5709bf55a0aaf991044c645cf8eb

  • SHA1

    feb9447ba639dff591fb3202dc2709e721e27def

  • SHA256

    633da69035ee5fe3ee2f2f006eab37321c7c127e0a5c39ecaea9a38acc5cb228

  • SHA512

    e49db202a6736eb684d896ee6bf7f0192876977eaa5202c5945948b0aea08c043b3df1cdfc58ded3bde51b2bd2ec86f6f3c180b364f9c3470ea82524c24fa398

  • SSDEEP

    24576:chYvug7sUOQNncXfPm+9zxBRj0oLvcXwH4OPFvpGIr7CJZ:ALg7s0Kzx/j7zcXwJPFx17m

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  • Enumerates processes with tasklist

    discovery
  behavioral1behavioral2