2c4d8b48344ae221e349e525ac16eb364ffb5ab8deae80c7caa28dd5967cabdb | Triage

Submit
Reports

Overview

overview

8

Static

static

1

TLauncher-2.876.exe

windows7-x64

8

Resubmissions

11-03-2023 20:24

230311-y62amsda4v 8

11-03-2023 20:17

230311-y2pq2sda3t 8

Sharing

General

Target

TLauncher-2.876.exe
Size

6.3MB
Sample

230311-y62amsda4v
MD5

f08d9bbc61cff8e8c3504524c3220bef
SHA1

b4268c667469620bb528c04eaa819d508159b398
SHA256

2c4d8b48344ae221e349e525ac16eb364ffb5ab8deae80c7caa28dd5967cabdb
SHA512

a64a03d959487399fb57e1bd062c0e9f88a17ff9b3ad15e6b96a4b7332341d0fc9186ef99b2ab9bdcfa51864f21d08bce48479202c01d15470916e90fb09fef4
SSDEEP

196608:/PIsbJRd4KIlsep5E8laWRtMGplAZQHW07v:HIqNbeY8la1Gpl/7

Score

8^/10

adware persistence stealer upx

Static task

static1

Behavioral task

behavioral1

Sample

TLauncher-2.876.exe

Resource

win7-20230220-es

adware persistence stealer upx

windows7-x64

22 signatures

1200 seconds

Malware Config

Targets

- Target
  
  TLauncher-2.876.exe
- Size
  
  6.3MB
- MD5
  
  f08d9bbc61cff8e8c3504524c3220bef
- SHA1
  
  b4268c667469620bb528c04eaa819d508159b398
- SHA256
  
  2c4d8b48344ae221e349e525ac16eb364ffb5ab8deae80c7caa28dd5967cabdb
- SHA512
  
  a64a03d959487399fb57e1bd062c0e9f88a17ff9b3ad15e6b96a4b7332341d0fc9186ef99b2ab9bdcfa51864f21d08bce48479202c01d15470916e90fb09fef4
- SSDEEP
  
  196608:/PIsbJRd4KIlsep5E8laWRtMGplAZQHW07v:HIqNbeY8la1Gpl/7
Score

8^/10

adware persistence stealer upx
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Registers COM server for autorun
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

adwarepersistencestealerupx

© 2018-2024

Terms | Privacy