Extracted

• • Target

    99208822ac147eb08fbc38394ed52fcb3802f0ae09576e97aca85e6d75e5abbe.exe

  • Size

    1.1MB

  • MD5

    a0bfa12b9b22a817f006946674a5641b

  • SHA1

    967610a98a014f7fbb05f16bdff677837bb6073a

  • SHA256

    99208822ac147eb08fbc38394ed52fcb3802f0ae09576e97aca85e6d75e5abbe

  • SHA512

    a833beb86a70bf7d126fb2f3c9b0d7cc063fd10201ab3c3439f79a5e69028b5760f8d4f354e70cf031721b63147729cf49f75c27c9e62cf28be74649d16fee18

  • SSDEEP

    24576:Wmedwa3ua+diL1yGtg4lWbl/KmVZeNSvgAeOccIFKazSy0jnV3xBzRb7Tb7j:pewa+ay0cxjeN27HccIwa2djV3xBh

  Score

  10^/10

  lummadiscoverystealer

  • Lumma Stealer, LummaC

    Lumma or LummaC is an infostealer written in C++ first seen in August 2022.

    stealerlumma

  • Lumma family

    lumma

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  • Enumerates processes with tasklist

    discovery
  behavioral1behavioral2