2024-11-28_b3afe151e1d94c9a50bf550bfec4dd86_luca-stealer_smoke-loader_wapomi

Sharing

Copy URL

Twitter E-mail

General

Target

2024-11-28_b3afe151e1d94c9a50bf550bfec4dd86_luca-stealer_smoke-loader_wapomi
Size

1.9MB
MD5

b3afe151e1d94c9a50bf550bfec4dd86
SHA1

3bac2109b4463e1c77ade33c65210ea5a56f7a95
SHA256

fcd6bba27775fac0d39c361771b90a1a938e933eb5a08e4253698f3047fe0574
SHA512

cc30e1bb5da5797176bb8e5ca482a52fbe00fd2a6f2dc4f2a7df74dda5b17f05026b8a931ee8997eedc36300aba5b21867ed4e1026a238ba54ee6a684f789537
SSDEEP

49152:ffGGCIriZKJoB+JTDGyNJr5rZDCD0PjxB0N9aYUz:ffGL4QKJoB+pDGyNJtrZ1PjxB0N9aYUz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
2024-11-28_b3afe151e1d94c9a50bf550bfec4dd86_luca-stealer_smoke-loader_wapomi

Files

2024-11-28_b3afe151e1d94c9a50bf550bfec4dd86_luca-stealer_smoke-loader_wapomi
.exe windows:6 windows x86 arch:x86

eb79327907d43b7a658d9425e6ebeb7d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
OutputDebugStringW
RtlUnwind
CreateDirectoryA
GetSystemInfo
VirtualAlloc
VirtualQuery
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetCommandLineA
GetCommandLineW
HeapQueryInformation
QueryPerformanceFrequency
SetStdHandle
GetFileType
ExitProcess
GetStdHandle
CompareStringW
LCMapStringW
GetTimeZoneInformation
GetStringTypeW
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
CreateFileW
WriteConsoleW
GetVersion
DeleteCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
RaiseException
DecodePointer
WideCharToMultiByte
GetTempFileNameA
Sleep
SearchPathA
GetProfileIntA
GetTickCount
GetTempPathA
LocalAlloc
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
FindResourceW
SizeofResource
LockResource
LoadResource
CloseHandle
WriteFile
CreateFileA
CreateMutexA
WaitForSingleObject
ReleaseMutex
VerifyVersionInfoA
VerSetConditionMask
FindResourceExW
GetWindowsDirectoryA
lstrcpyA
GetCPInfo
GetOEMCP
VirtualProtect
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryA
GetACP
GlobalFlags
SetErrorMode
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetSystemDirectoryW
EncodePointer
GetCurrentProcessId
GlobalAddAtomA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
CompareStringA
GlobalDeleteAtom
LoadLibraryExW
FreeLibrary
GetVersionExA
GetCurrentThread
ResumeThread
SetThreadPriority
GetCurrentThreadId
FindResourceA
lstrcmpA
lstrcmpiA
LoadLibraryW
LoadLibraryA
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetCurrentProcess
DuplicateHandle
OutputDebugStringA
GetVolumeInformationA
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
MultiByteToWideChar
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalSize
SetLastError

user32

SetRect
CopyAcceleratorTableA
DestroyAcceleratorTable
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
MapVirtualKeyExA
IsCharLowerA
GetKeyboardLayout
PostThreadMessageA
GetComboBoxInfo
MonitorFromPoint
UpdateLayeredWindow
UnionRect
CopyIcon
IsZoomed
DrawFrameControl
SetParent
SetWindowRgn
SetClassLongA
DrawStateA
EnumDisplayMonitors
SetLayeredWindowAttributes
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
MessageBeep
GetIconInfo
DrawIconEx
IsRectEmpty
DrawFocusRect
GetNextDlgGroupItem
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
BringWindowToTop
GetMenuDefaultItem
CreatePopupMenu
LoadImageW
TrackMouseEvent
MapDialogRect
GetAsyncKeyState
WaitMessage
DestroyIcon
GetDoubleClickTime
CopyImage
RealChildWindowFromPoint
GetSysColorBrush
IsDialogMessageA
SetWindowTextA
CheckDlgButton
MoveWindow
ShowWindow
OffsetRect
SetRectEmpty
SendDlgItemMessageA
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
GetWindow
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
SetMenu
GetMenu
SetFocus
GetDlgCtrlID
LockWindowUpdate
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
IsClipboardFormatAvailable
GetUpdateRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
DeleteMenu
CloseClipboard
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
LoadIconA
SetForegroundWindow
SetMenuDefaultItem
TrackPopupMenu
UnregisterClassA
GetSysColor
RedrawWindow
LoadImageA
LoadIconW
LoadCursorW
LoadCursorA
InflateRect
FrameRect
ChildWindowFromPoint
ScreenToClient
ClientToScreen
GetCursorPos
SetCursor
SetCursorPos
GetClientRect
InvalidateRect
ReleaseDC
GetDC
UpdateWindow
DrawIcon
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
EnableMenuItem
CheckMenuItem
GetSystemMenu
LoadMenuW
GetSystemMetrics
TranslateAcceleratorA
LoadAcceleratorsA
EnableWindow
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetCapture
GetKeyState
GetFocus
EmptyClipboard
SetClipboardData
OpenClipboard
IsIconic
PostMessageA
SendMessageA
DrawEdge
RegisterWindowMessageA
wsprintfA
GetWindowRect
GetForegroundWindow
SetWindowPos
GetMenuStringA
GetMenuState
AppendMenuA
RemoveMenu
CharUpperA
DestroyMenu
GetMenuItemInfoA
CopyRect
SystemParametersInfoA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoA
GetParent
LoadBitmapW
IsWindow
DestroyWindow
CreateDialogIndirectParamA
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongA
GetDesktopWindow
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
IsWindowVisible
ValidateRect
SetWindowsHookExA
CallNextHookEx
PostQuitMessage
ShowOwnedPopups
MessageBoxA
GetWindowThreadProcessId
GetLastActivePopup
GetKeyNameTextA
MapVirtualKeyA
WindowFromPoint
UnhookWindowsHookEx
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetWindowDC
BeginPaint
EndPaint
FillRect
IntersectRect
GetMessagePos
GetMessageTime
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsMenu

gdi32

GetTextFaceA
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
OffsetRgn
GetRgnBox
Rectangle
LPtoDP
CreateRoundRectRgn
Polyline
Polygon
CreatePolygonRgn
GetTextColor
Ellipse
CreateEllipticRgn
SetDIBColorTable
CreateDIBSection
SetPixel
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
GetBkColor
RealizePalette
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
EnumFontFamiliesExA
GetTextMetricsA
DPtoLP
SetRectRgn
CombineRgn
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
TextOutA
MoveToEx
BitBlt
CreateBitmapIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateSolidBrush
DeleteDC
DeleteObject
GetDIBits
GetPixel
SelectObject
StretchBlt
SetStretchBltMode
GetObjectA
CreateFontIndirectA
GetStockObject
CopyMetaFileA
CreateDCA
GetDeviceCaps
GetTextExtentPoint32A
ExtTextOutA
CreateBitmap
CreateRectRgnIndirect
PatBlt
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
GetSystemPaletteEntries

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteValueA
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegCloseKey
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA

shell32

SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragQueryFileA
DragFinish
ShellExecuteA
SHBrowseForFolderA
SHAppBarMessage
Shell_NotifyIconA

shlwapi

PathStripToRootA
PathFindExtensionA
PathFindFileNameA
PathRemoveFileSpecW
StrFormatKBSizeA
PathIsUNCA

uxtheme

GetThemePartSize
IsThemeBackgroundPartiallyTransparent
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
IsAppThemed

ole32

RegisterDragDrop
RevokeDragDrop
OleLockRunning
OleCreateMenuDescriptor
OleGetClipboard
OleTranslateAccelerator
IsAccelerator
DoDragDrop
CoLockObjectExternal
CreateStreamOnHGlobal
CoInitializeEx
CoDisconnectObject
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
OleDestroyMenuDescriptor

oleaut32

SysAllocString
VarBstrFromDate
VariantCopy
SysFreeString
SysAllocStringByteLen
SysAllocStringLen
VariantInit
VariantClear
VariantChangeType
LoadTypeLi
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime

gdiplus

GdiplusStartup
GdipFree
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipAlloc
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCreateBitmapFromStream
GdipCloneImage
GdiplusShutdown

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 326KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

5@ �u�
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

eb79327907d43b7a658d9425e6ebeb7d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 326KB - Virtual size: 326KB

.data Size: 21KB - Virtual size: 42KB

.rsrc Size: 59KB - Virtual size: 59KB

5@ �u� Size: 16KB - Virtual size: 20KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 326KB - Virtual size: 326KB

.data
Size: 21KB - Virtual size: 42KB

.rsrc
Size: 59KB - Virtual size: 59KB

5@ �u�
Size: 16KB - Virtual size: 20KB