launcher[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

launcher.exe
Size

1.2MB
MD5

30f82081b510f4cd8f01b063ce9caffc
SHA1

111599c51e3b85ec95c69ee4c735853488a57ace
SHA256

09aeccbcb1402e922e9b45f16df1bbb0b1e887741dcb072e2c3b14a832267564
SHA512

4496b2e07b541d79ff7f9de318eb288cde7776614611a0704942b720ebb2c132c8502cb8957131be3cd05edecf2450044ee959aadc739077846d4a74bf66e129
SSDEEP

24576:ppPU+8ZWRtxgE7wcaCArtT9nkagZ3fQNUp0u4/NSgJu6QM:7p8ytxgJCUtTKR3ZGunwu6

Score

1^/10

Malware Config

Signatures

Files

launcher.exe
.exe windows x64

7b30cc84ad17e1e650b3796a5eacf70e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

memset
wcslen
wcscpy
wcscat
malloc
free
memcmp
memmove
memcpy
strncmp
isdigit
sprintf
_wstat
_wcsdup
strcmp
_isnan
_finite
fread
longjmp
setjmp
fseek
ftell
strlen
strncpy
wcsncmp
wcscmp
floor
fabs
ceil
fclose
pow
??3@YAXPEAX@Z
wcsstr
wcsncpy
_wcsnicmp
_wcsicmp
setlocale
swscanf
tolower
calloc
_errno
_localtime64
strrchr
_mktime64
memchr
abort
_close
_wopen
realloc
_setmode
_lseeki64
exit
_open_osfhandle
strchr
_snprintf
_strdup
wctomb
_get_osfhandle
_open
toupper
wcschr
mbstowcs
frexp
modf
fopen
strerror
atof
_gmtime64
fflush
fwrite
__iob_func
fprintf
getenv
sscanf
strtol
strtoul
_time64
qsort
fputs
strstr
strpbrk
atoi
_stat64
_access
_read
_write
fputc
strspn
strcspn
fgets
isupper
_vsnwprintf

kernel32

GetModuleHandleW
HeapCreate
HeapDestroy
ExitProcess
GetVolumeInformationW
EnterCriticalSection
CloseHandle
LeaveCriticalSection
InitializeCriticalSection
WaitForSingleObject
LoadLibraryW
GetProcAddress
DeleteCriticalSection
HeapAlloc
HeapFree
HeapReAlloc
GetCurrentProcessId
GetCurrentThreadId
MultiByteToWideChar
GetCurrentProcess
DuplicateHandle
CreatePipe
GetStdHandle
CreateProcessW
CreateFileW
GetFileSize
ReadFile
DeleteFileW
WriteFile
CreateThread
FreeLibrary
Sleep
SetLastError
MulDiv
GlobalFree
GlobalAlloc
WideCharToMultiByte
TlsAlloc
GetCurrentDirectoryW
FindFirstFileW
GetLastError
FindClose
FindNextFileW
CopyFileW
SetFileAttributesW
GetDriveTypeW
GetFileAttributesW
GlobalLock
GlobalUnlock
TlsFree
TlsGetValue
TlsSetValue
HeapSize
GetTempPathW
IsValidCodePage
GetACP
GetOEMCP
GetFileType
PeekNamedPipe
GetFileInformationByHandle
GetFileAttributesA
CreateFileA
GetExitCodeProcess
GetFullPathNameW
GetModuleHandleA
LoadLibraryA
GetSystemDirectoryA
VerSetConditionMask
VerifyVersionInfoA
QueryPerformanceFrequency
SleepEx
QueryPerformanceCounter
GetTickCount
ExpandEnvironmentStringsA
FormatMessageA
GetFileSizeEx
UnregisterWait
GetCurrentThread
RegisterWaitForSingleObject

ole32

CoInitialize
RevokeDragDrop

shell32

ShellExecuteExW

ws2_32

closesocket
WSACleanup
WSAStartup
socket
recv
WSAGetLastError
send
ntohs
WSASetLastError
getsockopt
setsockopt
getpeername
getsockname
htons
bind
connect
WSAIoctl
select
__WSAFDIsSet
getaddrinfo
freeaddrinfo
htonl
listen
accept
ioctlsocket
gethostname
ntohl

crypt32

CertFreeCertificateContext
CertOpenStore
CryptStringToBinaryA
CertFindCertificateInStore
CertCloseStore
CertEnumCertificatesInStore
CertCreateCertificateChainEngine
CertGetCertificateChain
CertFreeCertificateChainEngine
CertFreeCertificateChain
CryptQueryObject
CertAddCertificateContextToStore
CertGetNameStringA

winmm

timeBeginPeriod

gdiplus

GdipDeleteFont
GdipDeleteGraphics
GdipDeletePath
GdipDeleteMatrix
GdipDeletePen
GdipDeleteStringFormat
GdipFree
GdipGetDpiX
GdipGetDpiY

user32

GetPropW
SetWindowLongPtrW
SetPropW
SendMessageW
GetClientRect
DestroyWindow
GetParent
RemovePropW
CallWindowProcW
FillRect
GetIconInfo
DrawStateW
InvalidateRect
ShowWindow
IsZoomed
GetWindowLongPtrW
MoveWindow
MessageBoxW
GetForegroundWindow
GetWindowThreadProcessId
IsWindowVisible
IsWindowEnabled
EnableWindow
EnumWindows
SetWindowPos
SystemParametersInfoW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
UpdateWindow
RedrawWindow
ReleaseCapture
BeginPaint
EndPaint
SetCapture
GetWindowRect
ScreenToClient
GetSystemMetrics
CreateWindowExW
GetSysColor
GetSysColorBrush
GetDC
ReleaseDC
GetFocus
FrameRect
DrawFocusRect
ValidateRect
DefWindowProcW
GetWindow
SetActiveWindow
DestroyIcon
LoadIconW
LoadCursorW
IsIconic
RegisterClassW
AdjustWindowRectEx
UnregisterClassW
CreateAcceleratorTableW
PeekMessageW
MsgWaitForMultipleObjects
GetMessageW
GetActiveWindow
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
DefFrameProcW
DestroyAcceleratorTable
SetRect
EnumChildWindows
SetFocus
PostMessageW
GetKeyState
GetClassNameW
IsChild
CreateIconFromResourceEx
CreateIconFromResource
CharLowerW
RegisterWindowMessageW
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard

gdi32

GetObjectType
GetObjectW
DeleteObject
IntersectClipRect
GetStockObject
CreateFontIndirectW
SetTextColor
SetBkColor
SelectObject
GetTextExtentPoint32W
CreateRectRgn
SelectClipRgn
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
DeleteDC
CreateSolidBrush
GetDeviceCaps
CreateBitmap
SetPixel
CreateDIBSection
GetDIBits
CreateDCW

advapi32

CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
CryptAcquireContextA
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash

comctl32

CreateStatusWindowW
InitCommonControlsEx

Sections

.code
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 846KB - Virtual size: 846KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 265KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b30cc84ad17e1e650b3796a5eacf70e

Headers

File Characteristics

Imports

msvcrt

kernel32

ole32

shell32

ws2_32

crypt32

winmm

gdiplus

user32

gdi32

advapi32

comctl32

Sections

.code Size: 17KB - Virtual size: 16KB

.text Size: 846KB - Virtual size: 846KB

.rdata Size: 265KB - Virtual size: 265KB

.pdata Size: 42KB - Virtual size: 41KB

.data Size: 63KB - Virtual size: 72KB

.rsrc Size: 28KB - Virtual size: 28KB

.code
Size: 17KB - Virtual size: 16KB

.text
Size: 846KB - Virtual size: 846KB

.rdata
Size: 265KB - Virtual size: 265KB

.pdata
Size: 42KB - Virtual size: 41KB

.data
Size: 63KB - Virtual size: 72KB

.rsrc
Size: 28KB - Virtual size: 28KB