General
-
Target
TLauncher-2.83-Installer-0.8.1.exe
-
Size
18.8MB
-
Sample
230316-azwvksgb46
-
MD5
6a2cf94c86c3b07703300abbd75ee66b
-
SHA1
d7153451f03fbf8044dfe9efede762369434d53c
-
SHA256
396402bb7af23445f68cd23efc0e2486cf67ea3fac5f2702c803565ab1f3040a
-
SHA512
83fd9f266d16496c647557af166573cdf2966701c7b9d860d21b6b0c9d28dfd7fb15a17a38c8bf36bee82921b7f59a6632de961f6f23346e9fe888ca73934ddd
-
SSDEEP
393216:5Xv7fNlJSj0fs/dQETVlOBbpFEj9GZdqV56Hpk6uBYhK0NvSgr:5/XJSgHExiTTqqHptYYYEvSgr
Static task
static1
Behavioral task
behavioral1
Sample
TLauncher-2.83-Installer-0.8.1.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
TLauncher-2.83-Installer-0.8.1.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
TLauncher-2.83-Installer-0.8.1.exe
-
Size
18.8MB
-
MD5
6a2cf94c86c3b07703300abbd75ee66b
-
SHA1
d7153451f03fbf8044dfe9efede762369434d53c
-
SHA256
396402bb7af23445f68cd23efc0e2486cf67ea3fac5f2702c803565ab1f3040a
-
SHA512
83fd9f266d16496c647557af166573cdf2966701c7b9d860d21b6b0c9d28dfd7fb15a17a38c8bf36bee82921b7f59a6632de961f6f23346e9fe888ca73934ddd
-
SSDEEP
393216:5Xv7fNlJSj0fs/dQETVlOBbpFEj9GZdqV56Hpk6uBYhK0NvSgr:5/XJSgHExiTTqqHptYYYEvSgr
Score8/10-
Blocklisted process makes network request
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Registers COM server for autorun
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-