Jun 14, 2026
C2 Hosts: 1
Remus
According to Gen, this is most likely the 64bit evolution of Lumma Stealer. It is capable of stealing stored browser passwords, cookies, cryptocurrency, and much more. It also uses EtherHiding to resolve C2s, replacing the traditional use of Steam and Telegram dead drop resolvers, and has additional anti-analysis checks.
C2 Infrastructure
Hosting/VPS 95%
ISP/Residential 5%
Last 7 days
Jun 10, 2026
C2 Hosts: 18
Jun 9, 2026
C2 Hosts: 2
| Date | C2 Hosts |
|---|---|
| Jun 14, 2026 | 1 |
| Jun 10, 2026 | 18 |
| Jun 9, 2026 | 2 |