889063b0d428ba381a21a35deb9d04fd63545a66ef73407d25f87fc5696adc89

Sharing

Copy URL

Twitter E-mail

General

Target

889063b0d428ba381a21a35deb9d04fd63545a66ef73407d25f87fc5696adc89
Size

382KB
MD5

800a5294b76ccb8931a0904e76846886
SHA1

ae1ea10b58450c04782cfc403afa28cf779e11bc
SHA256

889063b0d428ba381a21a35deb9d04fd63545a66ef73407d25f87fc5696adc89
SHA512

9043a720ea58bd45a63fe2245e69554eb45171617fcb44d41e454a52d947867baa8fa027c09572be05453ec1047d3be718d491b0fff2e14835274bc5518a6946
SSDEEP

6144:yGCVNGq2AcLGcmiuarKjKekqqBVq2Zq++++o++++++qjZfl8++O+yW+s+W+hZa+B:hCVT2nqciarKjKekqqBVq2Zq++++o++X

Score

N/A

Malware Config

Signatures

Files

889063b0d428ba381a21a35deb9d04fd63545a66ef73407d25f87fc5696adc89
.dll windows x86

148172081107200e70753e16a32c0c9a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteKeyA

lua51

luaL_optlstring
lua_pushvalue
lua_pushstring
luaL_argerror
lua_pushcclosure
lua_settable
lua_gettable
lua_createtable
lua_toboolean
lua_settop
lua_gettop
lua_next
lua_tonumber
lua_pushnil
lua_type
lua_pushboolean
lua_rawseti
lua_isuserdata
lua_tointeger
lua_rawgeti
lua_pushlstring
lua_objlen
lua_pushnumber
lua_pushlightuserdata
lua_topointer
lua_newuserdata
lua_insert
lua_setmetatable
lua_equal
lua_checkstack
lua_getmetatable
luaL_register
lua_close
luaL_openlibs
luaL_loadfile
lua_pcall
lua_setfield
luaL_newstate
lua_touserdata
luaL_ref
luaL_unref
lua_error
luaL_loadbuffer
lua_getfield
luaL_checknumber
lua_remove
lua_rawget
lua_call
luaL_checktype
lua_rawset
luaL_checklstring
lua_tolstring

kernel32

GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
InitializeCriticalSectionAndSpinCount
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
CloseHandle
GetStartupInfoA
GetFileType
SetHandleCount
RtlUnwind
HeapSize
FlushFileBuffers
GetConsoleMode
GetConsoleCP
RaiseException
GetStdHandle
WriteFile
ExitProcess
Sleep
WriteConsoleW
GetCurrentDirectoryA
IsBadWritePtr
lstrlenW
FatalAppExitA
DebugBreak
lstrcpyW
FormatMessageA
WideCharToMultiByte
MultiByteToWideChar
GetLastError
LocalFree
ExpandEnvironmentStringsA
GetProcAddress
LoadLibraryA
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
HeapReAlloc
VirtualAlloc
DeleteCriticalSection
VirtualFree
HeapDestroy
HeapCreate
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
SetStdHandle
CreateFileA
ReadFile
SetEndOfFile
GetProcessHeap
WaitForSingleObject
GetExitCodeProcess
CreateProcessA
GetFileAttributesA
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapFree
GetModuleFileNameA
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
GetCommandLineA
GetCurrentThreadId
HeapAlloc

user32

wsprintfA
TranslateMessage
WinHelpA
GetMessageA
RegisterClassA
CallWindowProcA
MapWindowPoints
IsWindowVisible
EqualRect
GetActiveWindow
ShowWindow
SetWindowPos
DefWindowProcA
CreateWindowExA
GetWindowLongA
MessageBoxA
IntersectRect
SetWindowRgn
GetWindowRect
DispatchMessageA
GetClientRect
SetFocus
OffsetRect

gdi32

SetViewportOrgEx
SetWindowExtEx
DeleteObject
CreateRectRgnIndirect
SetMapMode
SetViewportExtEx
SetWindowOrgEx

advapi32

RegQueryValueA
RegOpenKeyExA
RegCreateKeyExA
RegEnumKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey

ole32

CoCreateInstance
CreateBindCtx
MkParseDisplayName
CLSIDFromProgID
StringFromCLSID
CLSIDFromString
CoTaskMemFree
CoRevokeClassObject
CoRegisterClassObject
OleInitialize
OleUninitialize
StringFromIID
CoLockObjectExternal
CoTaskMemAlloc
CreateOleAdviseHolder
OleRegGetUserType
ProgIDFromCLSID

oleaut32

LoadTypeLibEx
SafeArrayAccessData
SysAllocStringLen
DispGetIDsOfNames
SafeArrayPutElement
SafeArrayUnaccessData
SafeArrayGetElement
VariantChangeType
SafeArrayGetDim
SystemTimeToVariantTime
SafeArrayCreate
SafeArrayDestroy
VariantCopy
GetActiveObject
UnRegisterTypeLi
SysFreeString
LoadRegTypeLi
SysStringLen
VariantClear
VariantInit
LHashValOfNameSys
VariantCopyInd
SafeArrayCreateVector
VariantTimeToSystemTime

Exports

Exports

DllGetClassObject
luacom_IDispatch2LuaCOM
luacom_close
luacom_detectAutomation
luacom_open
luacom_openlib
luaopen_luacom

Sections

.text
Size: 195KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

148172081107200e70753e16a32c0c9a

Headers

File Characteristics

Imports

shlwapi

lua51

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 195KB - Virtual size: 194KB

.rdata Size: 71KB - Virtual size: 70KB

.data Size: 7KB - Virtual size: 21KB

.rsrc Size: 95KB - Virtual size: 94KB

.reloc Size: 12KB - Virtual size: 12KB

.text
Size: 195KB - Virtual size: 194KB

.rdata
Size: 71KB - Virtual size: 70KB

.data
Size: 7KB - Virtual size: 21KB

.rsrc
Size: 95KB - Virtual size: 94KB

.reloc
Size: 12KB - Virtual size: 12KB