Extracted

• • Target

    Setupv2.5.1.zip

  • Size

    11.3MB

  • MD5

    fb713cd74363ef0b0286eb324366a9a3

  • SHA1

    ea60b2584670603dc2f636ce63f6d89067058bb1

  • SHA256

    b84757f61afe1e60e646e29163c32db9c4ca4317f52b2e0382f3f0a740677c57

  • SHA512

    61df7b381911976e338ab28a840e726a81c78fb5a90442dbe2fa1f0246d1baab6e1347f6d25219eff6c8f210b151063e063b35df40d956ac1bee43dca300402c

  • SSDEEP

    196608:6VeNNPpzsmrE2ThOuylSnmy4Q7ThGYscCn5YV7MBe6qA816z0g1l0IlFAass0pMM:6wHzsmlyknmO7TqcC5YVgY4zB0IlFUCM

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • .NET Reactor proctector

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Executes dropped EXE

  • Suspicious use of SetThreadContext

  behavioral1