Extracted

• • Target

    Browser_128_344_166.exe

  • Size

    1.2MB

  • MD5

    6265ad87754194af5bbd40aada2930a9

  • SHA1

    211b19af5e77f153f431ac223b9c22e8a5275ae9

  • SHA256

    3a9369aefe2a1212ca0bfadc0925d0149caf6436d1d9934e35c976fc9194a344

  • SHA512

    fe16f9d906996db99c55ed815fbe5c3be722c49a1a916a89c71c46a7fd2b7c40f2dadabe54a7dfe38a78a85d2115dd34c276f881c910a8cd1505090a2db3779e

  • SSDEEP

    24576:y/QsaepAxRKUMbZHkw92S1SBcKLmv47n4pQixafg9WPo7:BsTpAxrYMpmK41Mfg9N

  Score

  10^/10

  lummadiscoverypersistenceprivilege_escalationstealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Enumerates connected drives

    Attempts to read the root path of hard drives other than the default C: drive.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2