General

  • Target

    RDSK.zip

  • Size

    366KB

  • MD5

    fa7ee99b84944357d97906b09ec0d5db

  • SHA1

    b109e465a1e1ea6fdffa3f38dfc91cbe9fed13fd

  • SHA256

    d57240108f5a01786b4642cc81b804ab5e510dcb93be8150aeb925184b048ff0

  • SHA512

    ea3e6c2bdb928fb06f5fd9fb64578af4dcabb14f237d2c4e5e7f7eff6856cdf13f8fd4687d49a8d624d8eadcc4389e6f82ef1148d58f2a6e6e2c984e5e44d802

  • SSDEEP

    6144:Sq4Krb/RfdtHIMAjx7ualP/14E4pRp2KR9DH7m3oue9XcS97D2km7aNz:Dz3/NroTx7uYN4t2KR9XYtelRKuNz

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • RDSK.zip
    .zip
  • elevaterdsk.lua
  • lua.exe
    .exe windows x64

    ed674ff46d968d050864dab331d0b0c0


    Headers

    Imports

    Sections

  • lua54.dll
    .dll windows x64

    4abb04872ea153eb00239982cab6bf4a


    Headers

    Imports

    Exports

    Sections

  • luac54.exe
    .exe windows x64

    570210566f8ff89f4afeb3b80897f411


    Headers

    Imports

    Sections

  • rdsk.lua
  • start.bat
  • testelevate.lua
  • wlua54.exe
    .exe windows x64

    35f60157093e3c62a600ca18b5df3f46


    Headers

    Imports

    Sections