Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
2024-11-15_003a07edaa89b9eea34af223b4f41b49_lockbit_luca-stealer_revil.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
2024-11-15_003a07edaa89b9eea34af223b4f41b49_lockbit_luca-stealer_revil.exe
Resource
win10v2004-20241007-en
Target
2024-11-15_003a07edaa89b9eea34af223b4f41b49_lockbit_luca-stealer_revil
Size
6.9MB
MD5
003a07edaa89b9eea34af223b4f41b49
SHA1
8d849af2da15c5e276c82cc7387df6765f788055
SHA256
c669cb70d13fc719fdc4fc3f95666761558a51609eb03e60b8443b81ada25469
SHA512
8cf5428b2840fdb54a13844ce3d9e60a4fe041af4fb6a9111b1a017bee56de2cfc2bd70406bd70e0d6bcc838af0b3d034e2c41ddb535bed0439cc848bcce8c06
SSDEEP
98304:QKfpHgI1ZYM+bklVoPsurTLtYUG8BqYu374CD:QKrZp+oXoBYUG8wlLRD
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
closesocket
WSASetLastError
send
recv
WSAGetLastError
WSACleanup
CertGetCertificateContextProperty
CertFindCertificateInStore
CertEnumCertificatesInStore
CertCloseStore
CertOpenStore
CertFreeCertificateContext
CertDuplicateCertificateContext
RegCloseKey
CryptEnumProvidersW
CryptSignHashW
CryptDestroyHash
CryptCreateHash
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptGenRandom
CryptReleaseContext
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
RegSetValueExW
QueryServiceStatus
CloseServiceHandle
OpenSCManagerW
RegCreateKeyExW
RegOpenKeyExW
OpenServiceW
QueryServiceStatusEx
ControlService
MessageBoxW
GetUserObjectInformationW
GetProcessWindowStation
ShowWindow
SystemParametersInfoW
SetStdHandle
GetCurrentDirectoryW
GetFullPathNameW
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetProcessHeap
WriteConsoleW
HeapSize
WideCharToMultiByte
GetTimeZoneInformation
HeapReAlloc
SetFilePointerEx
GetFileAttributesExW
GetExitCodeProcess
ReadFile
SizeofResource
GetVolumeInformationW
GetLogicalDrives
FindFirstFileW
GetFileSizeEx
FindNextFileW
TerminateProcess
SetErrorMode
GetEnvironmentVariableW
CreateMutexW
FindClose
WaitForSingleObject
CreateFileW
Sleep
GetLastError
LockResource
CloseHandle
FreeConsole
LoadResource
FindResourceW
GetProcAddress
CreateProcessW
GetModuleHandleW
GetConsoleWindow
GetTickCount
GetDriveTypeW
MultiByteToWideChar
SetEndOfFile
GetStringTypeW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetLastError
InitializeCriticalSectionAndSpinCount
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
EncodePointer
DecodePointer
CompareStringW
LCMapStringW
GetLocaleInfoW
GetCPInfo
GetStdHandle
GetFileType
WriteFile
GetCurrentThreadId
QueryPerformanceCounter
GetCurrentProcessId
GetModuleHandleExW
FreeLibrary
LoadLibraryA
LoadLibraryW
GetConsoleMode
SetConsoleMode
ReadConsoleA
ReadConsoleW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
InitializeSListHead
GetConsoleCP
RtlUnwind
RaiseException
LoadLibraryExW
ExitProcess
DeleteFileW
MoveFileExW
SetConsoleCtrlHandler
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetModuleFileNameA
GetCommandLineA
GetCommandLineW
GetACP
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapAlloc
HeapFree
FlushFileBuffers
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ