b8b83c0bab9ea98c5c79a2d5a20fa7253f868fd7008d1c8e92ece5e58d19c569 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

tlauncher-2_67.exe

windows7-x64

8

tlauncher-2_67.exe

windows10-2004-x64

4

Sharing

General

Target

tlauncher-2_67.exe
Size

2.7MB
Sample

230216-xg84hsbb76
MD5

148dad5c69d17832a8b611f3bf0570f2
SHA1

fbc42d255c66287e2a942c6175bf66c568757766
SHA256

b8b83c0bab9ea98c5c79a2d5a20fa7253f868fd7008d1c8e92ece5e58d19c569
SHA512

cd33439f31f93abbf3a4b041a0c2ed7073281cb90583c56719b5f526686cda8fa1acf5dcc866b89afcc7493257dc43f991e062485a1dd4cb7a7d2221f2cc4dda
SSDEEP

49152:i3ulB7oLOUQgIwZ6EMaE1WecsHLYelgRV8PmM7NAZod4Z1uSM:8ulBAOUDIwZ6EMayAsrpUPxY

Score

8^/10

adware persistence stealer upx

Static task

static1

Behavioral task

behavioral1

Sample

tlauncher-2_67.exe

Resource

win7-20221111-en

adware persistence stealer upx

windows7-x64

21 signatures

150 seconds

Behavioral task

behavioral2

Sample

tlauncher-2_67.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  tlauncher-2_67.exe
- Size
  
  2.7MB
- MD5
  
  148dad5c69d17832a8b611f3bf0570f2
- SHA1
  
  fbc42d255c66287e2a942c6175bf66c568757766
- SHA256
  
  b8b83c0bab9ea98c5c79a2d5a20fa7253f868fd7008d1c8e92ece5e58d19c569
- SHA512
  
  cd33439f31f93abbf3a4b041a0c2ed7073281cb90583c56719b5f526686cda8fa1acf5dcc866b89afcc7493257dc43f991e062485a1dd4cb7a7d2221f2cc4dda
- SSDEEP
  
  49152:i3ulB7oLOUQgIwZ6EMaE1WecsHLYelgRV8PmM7NAZod4Z1uSM:8ulBAOUDIwZ6EMayAsrpUPxY
Score

8^/10

adware persistence stealer upx
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Registers COM server for autorun
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Browser Extensions

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarepersistencestealerupx

behavioral2

© 2018-2025

Terms | Privacy