Extracted

• • Target

    0314061ee2488b9e4b55c071813f655d234b085d289b9499296017be80d5fd37.exe

  • Size

    1.2MB

  • MD5

    7b5a0b2a1e2928a457fe71a675c1c7c1

  • SHA1

    f95da6f328ae7637e06c9711a2d4f0942ea01709

  • SHA256

    0314061ee2488b9e4b55c071813f655d234b085d289b9499296017be80d5fd37

  • SHA512

    e01a193416ea3eb37ab9a7b9d2d71246917f57e2e1cceb713ae0dd2ddea62464e5cff77d11d642bda75b672e9a93db05a63d089aaabf7bd4409ec46f66b92390

  • SSDEEP

    24576:/7nvHLagRC+LwDpaCH7menTC7LAjyB7sN1Gd5t1zYaR:jLhCx9aG7lTC6yFMiZ

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  • Enumerates processes with tasklist

    discovery
  behavioral1behavioral2