The Lua.Mani.Updater.v1.8.Setup.exe (Lua Mani Updater v1.7 Setup) File Analysis

Updated 1 day ago

Checked by Malaware Check

Lua.Mani.Updater.v1.8.Setup.exe

Technical Analysis

File Name	Lua.Mani.Updater.v1.8.Setup.exe
File Type	Win32 EXE
Magic Bytes	`PE32 executable (GUI) Intel 80386, for MS Windows`
SSDEEP Hash	393216:3AzFHHb2fOfIrwpWwlZ+4/NaikJWMCzufC5S/bCBmk:onEhRAfxhF5SzCBmk
Scanner Version	1.0.217.174
Database Version	2025-05-30 17:00:20 UTC

⚠

Suspicious File Detected

Detected by 26 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.

36%

Detection Rate

15,574,064

File Size (bytes)

26/72

Engines Detected

2025-05-30

Analysis Date

Scan Another File

File Identification

Hash Type	Value	Action
MD5	08838bdb8ec6bd67d6f2e817bdfc7fd8
SHA1	79394058ae28e0c9ee33b0837feed2e297291b24
SHA256	6a7d3e1104cbf51ef8bd330b2ebdf5da4eaacc518263556506a417e88704caae
SHA512	040abcdfe8f012dfc3e6ea163bba2b976edd05b394727451caa70c6d010ee04bbd3d25e3a99890f9fe9d540003069616f28e1b8e248b90309384da75f5896bf7
ImpHash	efd455830ba918de67076b7c65d86586

Security Engines with Detections (26 of 72)

Bkav

W32.AIDetectMalware Malicious

Lionic

Trojan.Win32.Nuitka.4!c Malicious

AVG

FileRepMalware [Misc] Malicious

CAT-QuickHeal

Trojan.Ghanarava.1748159225fc7fd8 Malicious

Sangfor

Trojan.Win32.Agent.V673 Malicious

K7AntiVirus

Trojan ( 005bdee11 ) Malicious

K7GW

Trojan ( 005bdee11 ) Malicious

ESET-NOD32

a variant of Python/Packed.Nuitka.Y suspicious Malicious

APEX

Malicious Malicious

Paloalto

generic.ml Malicious

Avast

FileRepMalware [Misc] Malicious

McAfeeD

ti!6A7D3E1104CB Malicious

CTX

exe.trojan.nuitka Malicious

Sophos

Mal/Generic-S Malicious

Ikarus

PUA.Python.Nuitka Malicious

Varist

W32/ABApplication.LOBP-6482 Malicious

Kingsoft

malware.kb.a.800 Malicious

Microsoft

Trojan:Win32/Wacatac.H!ml Malicious

GData

Win32.Application.Agent.J84NBX Malicious

Google

Detected Malicious

Cylance

Unsafe Malicious

TrellixENS

Artemis!08838BDB8EC6 Malicious

MaxSecure

Trojan.Malware.348353609.susgen Malicious

Fortinet

Riskware/Application Malicious

DeepInstinct

MALICIOUS Malicious

alibabacloud

VirTool:Python/Packed.Nuitka.Y Malicious

46 engines reported no threats - Only engines with detections are shown above for clarity

PE Analysis

Basic Information

▼

Icon	Hash: 0a8ac958c1c4cddf7e6644da13b1de02 Fuzzy: c17b6bea15de9c2ef750096165ab56ed dHash: e0ce1e1f4b0790f0
Image Base	`0x00400000`
Entry Point	`0x004acfe0`
Compilation Time	2025-03-13 06:55:45
Checksum	0x00000000 (Actual: 0x00ee8573)
OS Version	6.1
PEiD Signatures	`PE32 executable (GUI) Intel 80386, for MS Windows`
Digital Signature	No valid SignedData structure was found.
Imports	5 libraries kernel32, comctl32, user32, oleaut32, advapi32
Exports	2 functions
Resources	19 Resources
Sections	11 Sections

Version Information

▼

Comments	This installation was built with Inno Setup.
CompanyName	Ahmed
FileDescription	Lua Mani Updater v1.7 Setup
FileVersion
LegalCopyright
OriginalFileName
ProductName	Lua Mani Updater v1.7
ProductVersion	1.8
Translation	0x0000 0x04b0

PE Sections

▼

Name	Virtual Address	Virtual Size	Raw Size	Entropy	Characteristics	MD5
`.text`	`0x00001000`	698,088 bytes	698,368 bytes	6.39 (Normal)	`IMAGE_SCN_CNT_CODE\|IMAGE_SCN_MEM_EXECUTE\|IMAGE_SCN_MEM_READ`	`DFB8AD3DDDF244FD1CF24923C71D0EE9`
`.itext`	`0x000ac000`	6,024 bytes	6,144 bytes	6.25 (Normal)	`IMAGE_SCN_CNT_CODE\|IMAGE_SCN_MEM_EXECUTE\|IMAGE_SCN_MEM_READ`	`5F4B1E9E79C8B34D6A04F97D624934E2`
`.data`	`0x000ae000`	15,356 bytes	15,360 bytes	4.96 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`D06770F3F4F788F1A6B5745BCD756E66`
`.bss`	`0x000b2000`	29,348 bytes	0 bytes	0.00 (Normal)	`IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`D41D8CD98F00B204E9800998ECF8427E`
`.idata`	`0x000ba000`	4,198 bytes	4,608 bytes	4.82 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`CFABBE97F496978BE1D9ED2B0E76508C`
`.didata`	`0x000bc000`	420 bytes	512 bytes	2.76 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`6B25D6A3BA6793DF88CEEC45D9ED59B3`
`.edata`	`0x000bd000`	113 bytes	512 bytes	1.33 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ`	`1F044B007F9A7C5E77E0A9392C1C3BCB`
`.tls`	`0x000be000`	24 bytes	0 bytes	0.00 (Normal)	`IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`D41D8CD98F00B204E9800998ECF8427E`
`.rdata`	`0x000bf000`	93 bytes	512 bytes	1.40 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ`	`48BDF6E6093F9760E6F540D2B96A5683`
`.reloc`	`0x000c0000`	70,408 bytes	70,656 bytes	6.71 (Compressed)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_DISCARDABLE\|IMAGE_SCN_MEM_READ`	`FDB36BDD1AA26CD89BAFB86477CB558B`
`.rsrc`	`0x000d2000`	81,660 bytes	81,920 bytes	7.70 (Packed/Encrypted)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ`	`CF278623C559F2FF6DFF6166818E6454`

Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

▼

Total Resources: 19 (80,532 bytes)

Resource Type	Count	Total Size	Percentage
RT_ICON	1	67,492 bytes	83.8%
RT_STRING	12	8,692 bytes	10.8%
RT_RCDATA	3	956 bytes	1.2%
RT_GROUP_ICON	1	20 bytes	0%
RT_VERSION	1	1,412 bytes	1.8%
RT_MANIFEST	1	1,960 bytes	2.4%

Certificate Chain Analysis

▼

Certificate Information

Product	Lua Mani Updater v1.7
Description	Lua Mani Updater v1.7 Setup

✓ This file has been digitally signed and the certificate chain has been verified

The signature ensures file integrity and authenticity from the publisher
Timestamping proves when the signature was applied

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
Email Security: Be cautious with email attachments and links, even from known contacts.

Proactive Protection

26 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Your Score for

5 4 3 2 1