Draft:Infostealer/Win.LummaC2
Submission declined on 16 June 2024 by Wikishovel (talk). This submission is not adequately supported by reliable sources. Reliable sources are required so that information can be verified. If you need help with referencing, please see Referencing for beginners and Citing sources.
Where to get help
How to improve a draft
You can also browse Wikipedia:Featured articles and Wikipedia:Good articles to find examples of Wikipedia's best writing on topics similar to your proposed article. Improving your odds of a speedy review To improve your odds of a faster review, tag your draft with relevant WikiProject tags using the button below. This will let reviewers know a new draft has been submitted in their area of interest. For instance, if you wrote about a female astronomer, you would want to add the Biography, Astronomy, and Women scientists tags. Editor resources
| ![]() |
Infostealer/Win.LummaC2, also identified as "W32/ABRisk.ITLS-0529", "Trojan.Agent.GKOQ (B)", or "Trojan.Agent.GKOQ", is a type of malware primarily propagated through malicious programs such as Remote Access Trojans (RATs).
Operation[edit]
Infostealer/Win.LummaC2 is closely associated with other malware strains like "TR/Dldr.Rugmi.odadz", "Win32/TrojanDownloader.Rugmi.AHO", and "Downloader.Rugmi.Win32.733".
It is designed to clandestinely gather critical information from users and deploy unwanted software on the targeted devices.
Discovery and Activity[edit]
First detected in 2022, Infostealer/Win.LummaC2 experienced a significant surge in detections between July 2023 and January 2024.
According to reports from "EnigmaSoft," the malware was observed being sold in underground forums for a monthly fee of $250 (USD).