Multi-License Discount Quote

Change Region

English
Threat Database Trojans Trojan.Lumma.F

Trojan.Lumma.F

By CagedTech in Trojans

Threat Scorecard

Popularity Rank: 22,138
Threat Level: 80 % (High)
Infected Computers: 9
First Seen: August 23, 2024
Last Seen: January 23, 2026
OS(es) Affected: Windows

Analysis Report

General information

Family Name: Trojan.Lumma.F
Signature status: No Signature

Known Samples

MD5: d41b4cfadd6d5b8bbd65a650581dbc42
SHA1: a1efe06fdc672c2d7c959c86ed592e55c20b1778
SHA256: 9C576765B3C0B3D237E6589FE76116583F50FBF558DDB984B16D972FC28C4983
File Size: 10.24 KB, 10240 bytes

Windows Portable Executable Attributes

  • File doesn't have "Rich" header
  • File doesn't have exports table
  • File doesn't have security information
  • File is 32-bit executable
  • File is either console or GUI application
  • File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
  • File is Native application (NOT .NET application)
  • File is not packed
  • IMAGE_FILE_DLL is not set inside PE header (Executable)
  • IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Traits

  • x86

Block Information

Total Blocks: 20
Potentially Malicious Blocks: 1
Whitelisted Blocks: 19
Unknown Blocks: 0

Visual Map

x 0 0 0 0 2 0 0 0 0 0 2 2 0 0 2 1 0 0 2
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Registry Modifications

Key::Value Data API Name
HKCU\software\microsoft\mediaplayer\preferences::launchindex  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::sqmlaunchindex  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::appcolorlimited RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::firstrun RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::nextlaunchindex  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::xv11 192 RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::yv11 120 RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::widthv11 6 RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::heightv11 960 RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::maximized 0 RegNtPreCreateKey
Show More
HKCU\software\microsoft\mediaplayer\preferences::currenteffecttype Bars RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::currenteffectpreset  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::videozoom d RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::shrinktofit RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::stretchtofit  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::showeffects  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::showfullscreenplaylist RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\player\tasks\nowplaying::showhorizontalseparator  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\player\tasks\nowplaying::showverticalseparator  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\player\tasks\nowplaying::playlistwidth º RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\player\tasks\nowplaying::playlistheight d RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\player\tasks\nowplaying::settingswidth d RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\player\tasks\nowplaying::settingsheight ‡ RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\player\tasks\nowplaying::metadatawidth º RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\player\tasks\nowplaying::metadataheight   RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\player\tasks\nowplaying::captionsheight d RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::nowplayingquickhide RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::showtitles  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::showcaptions RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::nowplayingplaylist  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::nowplayingmetadata  RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::nowplayingsettings RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::currentdisplayview VizView RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::currentsettingsview EQView RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::currentmetadataview MediaInfoView RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::currentdisplaypreset RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::currentsettingspreset RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::currentmetadatapreset RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userdisplayview VizView RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userwmpdisplayview VizView RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userwmpsettingsview EQView RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userwmpmetadataview MediaInfoView RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userdisplaypreset RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userwmpdisplaypreset RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userwmpsettingspreset RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userwmpmetadatapreset RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userwmpshowsettings RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::userwmpshowmetadata RegNtPreCreateKey
HKCU\software\microsoft\mediaplayer\preferences::showalbumart RegNtPreCreateKey

Windows API Usage

Category API
Process Manipulation Evasion
  • NtUnmapViewOfSection
Process Shell Execute
  • CreateProcess
Network Winsock2
  • WSAStartup

Shell Command Execution

C:\Program Files (x86)\Windows Media Player\wmplayer.exe /device:dvd

Trending

Most Viewed

Loading...