Intel Name: Lummac stealer activity – execution of more.com and vbc.exe
Date of Scan: December 20, 2024
Impact: High
Summary: Detects the execution of more.com and vbc.exe within the process tree, a behavior linked to samples associated with Lummac Stealer. The Lummac payload is injected into the vbc.exe process.