Extracted

• • Target

    ActiVe_Ver_Set-UpFilE.exe

  • Size

    1.0MB

  • MD5

    047187c8dc466a354acb17192de48bdd

  • SHA1

    1bf147c660bce0a5627d68e2f67c936ec38a8633

  • SHA256

    856008a3c4234e8a1377480f8dd0a831c11e5889b04495e86d98b58a54c37463

  • SHA512

    8aa2ee92fc73240f7cebe5c7433076a62bdf403d8b97ac6d0cbc3ec3b8b808ece418a5f836f84d5baf0b6cab44f85ddff556f3e6bad5474e0e257e5cc1d2e7a1

  • SSDEEP

    24576:OUiOgNMUUHR4cR4/vj52mC/NqIB3X4RrBhFs:9BgW7HRb4vFq4RFhFs

  Score

  10^/10

  discoverylummastealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  • Enumerates processes with tasklist

    discovery
  behavioral1behavioral2