Overview

overview

7

Static

static

1

TLauncher.exe

windows7-x64

7

TLauncher.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    TLauncher.exe

  • Size

    6.3MB

  • Sample

    230418-31zxvagh2v

  • MD5

    545c62b3d98ee4cc02af837a72dd09c4

  • SHA1

    54446a007fd9b7363d9415673b0ac0232d5d70d5

  • SHA256

    738029a4f974128180fa2cd239e873b01e456e8bf53bfdbf34b8ba8b57897be4

  • SHA512

    8bf9c754861ed267efd2055ac09b4ad44df61b989859fccd14190592dca1dab0fa8f57360209eaceabb5137f742c9cea73a1a985ab1955f87a6875d0be95fdcf

  • SSDEEP

    196608:5f7ffML5vgtXB0IXf2tT2MzlHShlhmN7DGL:ulNIOtT22ShlA2

Score
7/10
adwarepersistencestealerupx

Malware Config

Targets

    • Target

      TLauncher.exe

    • Size

      6.3MB

    • MD5

      545c62b3d98ee4cc02af837a72dd09c4

    • SHA1

      54446a007fd9b7363d9415673b0ac0232d5d70d5

    • SHA256

      738029a4f974128180fa2cd239e873b01e456e8bf53bfdbf34b8ba8b57897be4

    • SHA512

      8bf9c754861ed267efd2055ac09b4ad44df61b989859fccd14190592dca1dab0fa8f57360209eaceabb5137f742c9cea73a1a985ab1955f87a6875d0be95fdcf

    • SSDEEP

      196608:5f7ffML5vgtXB0IXf2tT2MzlHShlhmN7DGL:ulNIOtT22ShlA2

    Score
    7/10
    adwarepersistencestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks