popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

JLumma.exe

Schwerer Generic Malware Malicious Library UPX Malicious Packer PE File dll OS Processor Check PE32 DllRegisterServer
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Sept. 17, 2024, 1:22 p.m. Sept. 17, 2024, 1:41 p.m.
Size 23.1MB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 8094be340c539b9ac0d2af7ea4c3120c
SHA256 71b814a0a6c6d9cd59504a14918e29f59d2b77d981dca01d22a97f098c89c782
CRC32 D54BF043
ssdeep 196608:H1nMXE60CkFiBhh2NUVNNXtW4HfuaSCL3b4kOVgNffMqf4dU:uT32SD6CL3PEgNb
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Schwerer_IN - Schwerer
  • Malicious_Packer_Zero - Malicious Packer
  • DllRegisterServer_Zero - execute regsvr32.exe
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .symtab
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Lumma.i!c
CAT-QuickHeal Trojan.Agent
Skyhigh Artemis
Cylance Unsafe
Sangfor Infostealer.Win32.Lumma.V174
K7GW Trojan ( 005b9b2a1 )
K7AntiVirus Trojan ( 005b9b2a1 )
VirIT Trojan.Win32.Genus.WLO
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of WinGo/TrojanDropper.Agent.EK
Avast Win32:Evo-gen [Trj]
Kaspersky Trojan-PSW.Win32.Lumma.bqz
Alibaba TrojanPSW:Win32/Lumma.459454f4
Rising Dropper.Agent!1.10205 (CLASSIC)
F-Secure Trojan.TR/Redcap.avwsk
DrWeb Trojan.PWS.Lumma.424
TrendMicro Trojan.Win32.AMADEY.YXEIKZ
McAfeeD ti!71B814A0A6C6
Trapmine malicious.moderate.ml.score
CTX exe.trojan.lumma
Sophos Mal/Generic-S
Jiangmin Trojan.PSW.Lumma.bk
Webroot W32.AMADEY.YXEIKZ
Google Detected
Avira TR/Redcap.avwsk
Antiy-AVL Trojan/Win32.Sabsik
Kingsoft Win32.Trojan-PSW.Lumma.bqz
Gridinsoft Spy.Win32.Gen.tr
Xcitium Malware@#2hgjw8ntqabkj
Microsoft Trojan:Win32/Phonzy.A!ml
ZoneAlarm Trojan-PSW.Win32.Lumma.bqz
GData Win32.Trojan.Agent.6NOJCO
Varist W32/ABTrojan.WMJS-5360
AhnLab-V3 Infostealer/Win.LummaC2.C5661024
McAfee Artemis!8094BE340C53
DeepInstinct MALICIOUS
Malwarebytes Trojan.Dropper.GO.Generic
Ikarus Trojan-Dropper.WinGo.Agent
Panda Trj/Chgt.AD
TrendMicro-HouseCall Trojan.Win32.AMADEY.YXEIKZ
Tencent Win32.Trojan-QQPass.QQRob.Jqil
Fortinet W32/Agent.EK!tr
AVG Win32:Evo-gen [Trj]
Paloalto generic.ml
alibabacloud Trojan[dropper]:Multi/Lumma.bew