Extracted

• • Target

    34c3a5d70230d93968cc2db047398cef644fb500740bbc20d09feb8e754ae197.exe

  • Size

    1.1MB

  • MD5

    a2e9824e77be1fbc29913ffd0b324823

  • SHA1

    42dd1e05ec49639d9d8ad318e732a66a1451fd6f

  • SHA256

    34c3a5d70230d93968cc2db047398cef644fb500740bbc20d09feb8e754ae197

  • SHA512

    d42a7f8c2d032a46dd664e6941c3496359ecc865d7a5394c782ecfd66fbd17b9bfefa1671068c869803c99cb9e00553242286c71b180341e003299d64ff4ed8c

  • SSDEEP

    24576:eAp1czyvnORvabmyJFMwOQ75wWkGR+1FaFEddGuL9NfSvtzH:lczyvORiRJxwJ1FYxG2lzH

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  • Enumerates processes with tasklist

    discovery
  behavioral1behavioral2