Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

LauncherFe...64.exe

windows7-x64

8

LauncherFe...64.exe

windows10-2004-x64

8

LauncherFe...v7.exe

windows7-x64

1

LauncherFe...v7.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    exe.rar

  • Size

    39.0MB

  • Sample

    230113-wmwjyabc52

  • MD5

    2671152aebc9cdff2fd2fb4baa2398cc

  • SHA1

    bda8270069c7e6bbf94778ace8d4689a91c82185

  • SHA256

    7bac4bde974463d259fdc46d61231d891aa107415eedfcf32cdbcec1e258b16d

  • SHA512

    160ae6298196271d11d0059e7873a3f5e315617d5a75e0e62e68a79e769a0efc083b3bac46be87943104b90dc6e687bbcba0c5c1afb00c6e5c0f249ba1b20420

  • SSDEEP

    786432:SlINyMHujfc5cLlMfcNvBuwWndGHimD40Zm3niTcbJMNH:7keujfca2fcNvBuwWndZqsniwlMNH

Score
8/10
adwarepersistencestealerupx

Malware Config

Targets

    • Target

      LauncherFenix-Java-8u51-Windows-x64.exe

    • Size

      41.2MB

    • MD5

      b9919195f61824f980f4a088d7447a11

    • SHA1

      447fd1f59219282ec5d2f7a179ac12cc072171c3

    • SHA256

      3895872bc4cdfb7693c227a435cf6740f968e4fa6ce0f7449e6a074e3e3a0f01

    • SHA512

      d9f4e268531bd48f6b6aa4325024921bca30ebfff3ae6af5c069146a3fc401c411bdeceb306ba01fbf3bcdc48e39a367e78a1f355dc3dd5f1df75a0d585a10c6

    • SSDEEP

      786432:lIL77/mXteC+c78UZnibhhr7pYA/NSkv7JrpzUyHTrD0N6U1cNYGOtss:lK7gf3iLrNYrk1rpwyPD0N6vYGOtT

    Score
    8/10
    adwarepersistencestealerupx

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Registers COM server for autorun

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      LauncherFenix-Minecraft-v7.exe

    • Size

      397KB

    • MD5

      d99bb55b57712065bc88be297c1da38c

    • SHA1

      fb6662dd31e8e5be380fbd7a33a50a45953fe1e7

    • SHA256

      122bfbb9f67e355340991deeacb167be9c12ad726b5a7c5779448dd0cc4af0cb

    • SHA512

      3eb5d57faea4c0146c2af40102deaac18235b379f5e81fe35a977b642e3edf70704c8cedd835e94f27b04c8413968f7469fccf82c1c9339066d38d3387c71b17

    • SSDEEP

      3072:puzvch1rugYc4wqYSRR756K7ItBjgXHUYCnlK:Wch1aIqYSRVM+unlK

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v6

Tasks