Extracted

• • Target

    921d75c8cbcf2c934df28a2f1e615fb468e663bcc94f8012d220a7f7cf9120d0.exe

  • Size

    1.1MB

  • MD5

    3e8e6967fd4794ed4d29e34bdaaf939c

  • SHA1

    36687e95877a56f1b8db8ed3771d6c208ec8422a

  • SHA256

    921d75c8cbcf2c934df28a2f1e615fb468e663bcc94f8012d220a7f7cf9120d0

  • SHA512

    af2232d188fd7a8617ba22bb83cf1cf6288243d9deeda4470c4d7d6b75592c0917684266d251fb7d20bf19f9bb2c31bd0e9880fa6b2117465493f5be09234267

  • SSDEEP

    24576:4KUXU/58hwuSo0dGjhpcKwE9fY5bBIRZ84/gwW9TH+OLDR7C:TUE6hmo0dGgb5bMZ84/ZODR7C

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  • Enumerates processes with tasklist

    discovery
  behavioral1behavioral2