Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	July 20, 2024, 8:10 p.m.	July 20, 2024, 8:20 p.m.

Size	300.0KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`cf8dc800af1373e2e48b68f126ab4123`
SHA256	`e576a0734545a457ee3a6fc7f806cf6e7dc66e2d1d306411d6e1bb5e593d7f77`
CRC32	`CAB4739C`
ssdeep	`6144:iNyGUtxP8AnCkKXly63556TF1bTjLkyblgwZcp0YzBQ:iNyXnvnCAzdblup0`
Yara	PE_Header_Zero - PE File Signature lumma_Stealer - Lumma Stealer IsPE32 - (no description) UPX_Zero - UPX packed file

lummnew.exe "C:\Users\test22\AppData\Local\Temp\lummnew.exe"
1932

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 59 AntiVirus engines on VirusTotal as malicious (50 out of 59 events)

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.LummaStealer.4!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
CAT-QuickHeal	Trojan.Agent
Skyhigh	BehavesLike.Win32.TrojanAitInject.fh
ALYac	Gen:Variant.Lazy.449542
Cylance	Unsafe
VIPRE	Gen:Variant.Lazy.449542
Sangfor	Spyware.Win32.Lummastealer.Vqhn
K7AntiVirus	Spyware ( 005b69541 )
BitDefender	Gen:Variant.Lazy.449542
K7GW	Spyware ( 005b69541 )
Cybereason	malicious.0af137
Arcabit	Trojan.Lazy.D6DC06
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Spy.LummaStealer.B
APEX	Malicious
McAfee	Artemis!CF8DC800AF13
Avast	Win32:Evo-gen [Trj]
ClamAV	Win.Packed.Lazy-10033561-0
Kaspersky	UDS:DangerousObject.Multi.Generic
Alibaba	TrojanSpy:Win32/LummaStealer.e8dfc678
NANO-Antivirus	Virus.Win32.Gen.ccmw
MicroWorld-eScan	Gen:Variant.Lazy.449542
Rising	Spyware.LummaStealer!8.1A464 (TFE:5:YglkxfxvbwO)
Emsisoft	Gen:Variant.Lazy.449542 (B)
F-Secure	Trojan.TR/Crypt.XPACK.Gen
TrendMicro	Trojan.Win32.AMADEY.YXEGPZ
McAfeeD	Real Protect-LS!CF8DC800AF13
Trapmine	malicious.high.ml.score
FireEye	Generic.mg.cf8dc800af1373e2
Sophos	Mal/Generic-S (PUA)
Ikarus	Trojan-Spy.Win32.LummaStealer
Webroot	W32.Trojan.TR.Crypt.XPACK
Google	Detected
Avira	TR/Crypt.XPACK.Gen
MAX	malware (ai score=80)
Antiy-AVL	Trojan[Spy]/Win32.LummaStealer
Kingsoft	malware.kb.a.983
Gridinsoft	Ransom.Win32.Wacatac.sa
Xcitium	Malware@#3r2z82943ynds
Microsoft	Spyware:Win32/Multiverze
ViRobot	Trojan.Win.Z.Lummastealer.307200.A
ZoneAlarm	UDS:DangerousObject.Multi.Generic
GData	Gen:Variant.Lazy.449542
Varist	W32/ABTrojan.NMGA-4735
AhnLab-V3	Trojan/Win.Generic.R657991
BitDefenderTheta	AI:Packer.CFF892311E
DeepInstinct	MALICIOUS

lummnew.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All