home

lua.exe

MD5:
3714862459bfb47757e9704e97ba23f9

SHA-1:
943414c849c7db473b4436e82554f579929ebdbb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 1:29:12 PM UTC  (today)

File size:
184 KB (188,416 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\install on your desktop\dreamerro\lua.exe

File PE Metadata
Compilation timestamp:
9/13/2004 2:55:53 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

CTPH (ssdeep):
3072:3INirVgFXQLic+Ev/XmQUp5EHjAolT0AE68e0ve4oBs:3lrV+Xwic5mQUp5EH0AwAT4

Entry address:
0x152FD

Entry point:
55, 8B, EC, 6A, FF, 68, A8, 58, 42, 00, 68, 38, A4, 41, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 10, 53, 56, 57, 89, 65, E8, FF, 15, 1C, 50, 42, 00, 33, D2, 8A, D4, 89, 15, 7C, D7, 42, 00, 8B, C8, 81, E1, FF, 00, 00, 00, 89, 0D, 78, D7, 42, 00, C1, E1, 08, 03, CA, 89, 0D, 74, D7, 42, 00, C1, E8, 10, A3, 70, D7, 42, 00, 6A, 00, E8, 86, 4F, 00, 00, 59, 85, C0, 75, 08, 6A, 1C, E8, 9A, 00, 00, 00, 59, 83, 65, FC, 00, E8, 9F, 3D, 00, 00, FF, 15, 18, 50, 42, 00, A3, DC, DE, 42, 00, E8...
 
[+]

Entropy:
6.2269

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
144 KB (147,456 bytes)

The file lua.exe has been discovered within the following programs.

AsgardRO  by AsgardRO
About 1% of users remove it
Blackout Ragnarok Online  by Blackout Gaming
www.blackout-gaming.net
About 4% of users remove it
EssenceRO  by EssenceRO
About 7% of users remove it
Full Client  by RebirthRO
www.rebirthro.com
About 4% of users remove it
FusionRO  by World of Fusion
www.fusionro.com
About 3% of users remove it
LimitRO  by Limit Ragnarok Online
www.limit-ro.net
About 3% of users remove it
LimitRO Renewal v20120210  by Limit Ragnarok Online
About 6% of users remove it
LimitRORenewal Full Client v20111016  by Limit Ragnarok Online
About 3% of users remove it
Miruku RORE Client 15122011  by CalciumKid
miruku.rathena.org
About 8% of users remove it
Ragnarok  by Gravity Interactive, Inc.
www.ragnarokonline.jp
About 1% of users remove it
 
Latest 20 of 16 programs
Powered by Should I Remove It?

The file lua.exe has been seen being distributed by the following 2 URLs.

http://rebirthro.com/web-dl/se/.../lua.exe

http://rebirthro.com/web-dl/.../lua.exe

Scan lua.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.