8da6d6246d118e8cfbdfb372bcddd1b236bae48fcd73a2f87d9cf9adef2c7656

Sharing

Copy URL

Twitter E-mail

General

Target

8da6d6246d118e8cfbdfb372bcddd1b236bae48fcd73a2f87d9cf9adef2c7656
Size

52.9MB
MD5

67879618a7171c53615b4d0a6754f8b9
SHA1

fd9a9429f3b5d4927bc950b4f8be24922fa7c191
SHA256

8da6d6246d118e8cfbdfb372bcddd1b236bae48fcd73a2f87d9cf9adef2c7656
SHA512

22dc6a35f428afe6e7609c91a91bc1df44f884b88f9e2b46e27762ea5e5c4ef636110da4dc022425ef40c341469f7fbb64a12afa991c79315fd723a959b6b922
SSDEEP

1572864:n8bQ22JtEJpUjKaMCy534n31u0uT2C2CB1lWE:8bQ22DqzaMJKuTOCB1lZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8da6d6246d118e8cfbdfb372bcddd1b236bae48fcd73a2f87d9cf9adef2c7656

Files

8da6d6246d118e8cfbdfb372bcddd1b236bae48fcd73a2f87d9cf9adef2c7656
.exe windows:6 windows x64 arch:x64

c296447493965716a3e30f60e2cd7fe4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

love

luaopen_love
love_codename
?luax_resume@love@@YAHPEAUlua_State@@HPEAH@Z
love_version
luaopen_love_jitsetup
love_openConsole

lua51

lua_isnumber
lua_type
lua_tonumber
lua_tolstring
lua_pushstring
lua_pushcclosure
lua_pushboolean
lua_getfield
lua_pushvalue
lua_settop
lua_gettop
lua_newthread
lua_close
lua_createtable
lua_setfield
lua_rawseti
lua_call
luaL_openlibs
luaL_newstate

msvcp120

?_Winerror_map@std@@YAPEBDH@Z
?_Syserror_map@std@@YAPEBDH@Z
?_Xout_of_range@std@@YAXPEBD@Z
?_Xlength_error@std@@YAXPEBD@Z
?_Xbad_alloc@std@@YAXXZ

msvcr120

_acmdln
_initterm
_initterm_e
__setusermatherr
_configthreadlocale
_ismbblead
_cexit
_exit
exit
_fmode
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
__crtSetUnhandledExceptionFilter
_commode
_purecall
??2@YAPEAX_K@Z
??3@YAXPEAX@Z
printf
memmove
_CxxThrowException
__CxxFrameHandler3
memcpy
strcmp
_lock
_unlock
_calloc_crt
__dllonexit
__C_specific_handler
_onexit
_XcptFilter
__crtGetShowWindowMode
_amsg_exit
__getmainargs
__set_app_type

shell32

CommandLineToArgvW

sdl2

SDL_memcpy
SDL_free
SDL_wcslen
SDL_strlen
SDL_iconv_string
SDL_SetMainReady
SDL_ShowSimpleMessageBox

kernel32

LocalFree
GetProcessHeap
HeapFree
HeapAlloc
GetCommandLineW
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
DecodePointer
EncodePointer

Exports

Exports

AmdPowerXpressRequestHighPerformance
NvOptimusEnablement

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 371KB - Virtual size: 370KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c296447493965716a3e30f60e2cd7fe4

Headers

DLL Characteristics

File Characteristics

Imports

love

lua51

msvcp120

msvcr120

shell32

sdl2

kernel32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 504B

.pdata Size: 512B - Virtual size: 480B

.rsrc Size: 371KB - Virtual size: 370KB

.reloc Size: 512B - Virtual size: 128B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 504B

.pdata
Size: 512B - Virtual size: 480B

.rsrc
Size: 371KB - Virtual size: 370KB

.reloc
Size: 512B - Virtual size: 128B