Extracted

• • Target

    Setup.exe

  • Size

    1.1MB

  • MD5

    d630944d759e73848965cf7dbd9c89e3

  • SHA1

    4f91c583c9961c9c891d2fb63d3a709b41fe97f0

  • SHA256

    bceb986397dc19b258f4be0fd2559d67b10875430b31296e263e05ee3b9a0247

  • SHA512

    63b9f74815d869d6ca86989e5be9d4ac4aad88773c217d33465de2b756453f03c000bd200b3691e4e3fdf4cbd3cea55cd96ad626a347ff451a71e44d650a99c5

  • SSDEEP

    24576:jjBtLjvnr3blqsEQHKD+fFJy9jAeEaNPqUEE1FCrhiO1x53w3:vPv3bHfzyJAw7ERF3w3

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  • Enumerates processes with tasklist

    discovery
  behavioral1behavioral2