Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	July 20, 2024, 8:10 p.m.	July 20, 2024, 8:27 p.m.

Size	300.0KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`3d2133fcf75f684b0b8d0152c8304c9b`
SHA256	`7e68cd5a60b4a11b55de891dfa4700081856afdae18fb44fcb5c62eb46d8c52f`
CRC32	`91E06584`
ssdeep	`6144:iNyGUtxP8AnCkKXly63556TF1bTjLkyblgwZcp0/BQ:iNyXnvnCAzdblup0`
Yara	PE_Header_Zero - PE File Signature lumma_Stealer - Lumma Stealer IsPE32 - (no description) UPX_Zero - UPX packed file

LummaC2.exe "C:\Users\test22\AppData\Local\Temp\LummaC2.exe"
2552

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 54 AntiVirus engines on VirusTotal as malicious (50 out of 54 events)

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.LummaStealer.4!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
Skyhigh	BehavesLike.Win32.TrojanAitInject.fh
McAfee	Artemis!3D2133FCF75F
Cylance	Unsafe
VIPRE	Gen:Variant.Lazy.449542
Sangfor	Spyware.Win32.Lummastealer.Vikh
K7AntiVirus	Spyware ( 005b69541 )
BitDefender	Gen:Variant.Lazy.449542
K7GW	Spyware ( 005b69541 )
Cybereason	malicious.cf75f6
Arcabit	Trojan.Lazy.D6DC06
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Spy.LummaStealer.B
APEX	Malicious
Avast	Win32:Evo-gen [Trj]
ClamAV	Win.Packed.Lazy-10033561-0
Kaspersky	UDS:DangerousObject.Multi.Generic
Alibaba	TrojanSpy:Win32/LummaStealer.e5ead299
NANO-Antivirus	Virus.Win32.Gen.ccmw
MicroWorld-eScan	Gen:Variant.Lazy.449542
Rising	Spyware.LummaStealer!8.1A464 (TFE:5:YglkxfxvbwO)
Emsisoft	Gen:Variant.Lazy.449542 (B)
F-Secure	Trojan.TR/Crypt.XPACK.Gen
TrendMicro	TrojanSpy.Win32.LUMMASTEALER.YXEGSZ
McAfeeD	Real Protect-LS!3D2133FCF75F
Trapmine	malicious.high.ml.score
FireEye	Generic.mg.3d2133fcf75f684b
Sophos	Mal/Generic-S
Ikarus	Trojan-Spy.Win32.LummaStealer
Google	Detected
Avira	TR/Crypt.XPACK.Gen
MAX	malware (ai score=82)
Antiy-AVL	Trojan[Spy]/Win32.LummaStealer
Kingsoft	malware.kb.a.985
Gridinsoft	Ransom.Win32.Wacatac.sa
Microsoft	Trojan:Win32/Leonem
ZoneAlarm	UDS:DangerousObject.Multi.Generic
GData	Gen:Variant.Lazy.449542
Varist	W32/ABTrojan.YNYT-7032
AhnLab-V3	Trojan/Win.Generic.R657991
BitDefenderTheta	AI:Packer.CFF892311E
DeepInstinct	MALICIOUS
Malwarebytes	Spyware.Lumma
TrendMicro-HouseCall	TrojanSpy.Win32.LUMMASTEALER.YXEGSZ
Tencent	Trojan-PSW.Win32.Convagent.he
MaxSecure	Trojan.Malware.1728101.susgen
Fortinet	W32/LummaStealer.B!tr.spy

LummaC2.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All