launcher[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

launcher.exe
Size

1.4MB
MD5

defd0863f61db4f4313f5af010f98ee8
SHA1

92fe10cebc2a276d646bc6d63de242dc3fca14b1
SHA256

6bf9873d8d4f6cefcc5dbe67ed2848799b94c294870d055f85965002e5720356
SHA512

f1e9b9b534347a5014c515a014c010bf06570a276bf7e9ee523b865ec8f8d74aedf778e0a9df6c060ec27afda5a5a111eb7ddc9cbc84d59e7d8bc491c0edf807
SSDEEP

24576:y/B+NxnQoAQboZsgjh3V5d5bOL/8hVyE50uyId70h73+U:y5+NaofuN1VrpOL/YVyn3Idi7uU

Score

1^/10

Malware Config

Signatures

Files

launcher.exe
.exe windows x64

ac2017a22ae9705b37e8c39451a1568d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

shell32

ExtractIconExA

gdi32

CreateSolidBrush
DeleteObject
GetStockObject
RealizePalette
SelectPalette
SetBkColor
SetTextColor
CreateCompatibleDC
DeleteDC
GetTextExtentPoint32A
SelectObject
GetTextMetricsA
ExcludeClipRect
GetObjectA
SetBkMode
CreateRectRgnIndirect
CombineRgn

gdiplus

GdipAlloc
GdipGetImageGraphicsContext
GdipSetPageUnit
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipCreateFromHDC
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipMeasureString
GdipDrawString
GdipDeleteFont
GdipFree
GdipDrawImageRectI
GdipFillPath
GdipFillEllipseI
GdipDrawPath
GdipDrawEllipseI
GdipDrawRectangleI
GdipDrawLines
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipGetSmoothingMode
GdipSetSmoothingMode
GdipCreateBitmapFromScan0
GdipImageRotateFlip
GdipDisposeImage
GdipCloneImage
GdipDeletePen
GdipCreatePen2
GdipCreateLineBrushFromRectWithAngleI
GdipAddPathArc
GdipAddPathLine
GdipClosePathFigure
GdipDeletePath
GdipCreatePath
GdiplusStartup
GdipRestoreGraphics
GdipSaveGraphics
GdipSetClipRectI
GdipFillRectangleI
GdipCreateHalftonePalette
GdipReleaseDC
GdipGetDC
GdipDeleteGraphics
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush

user32

EnumWindows
DrawTextExA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
DrawTextA
SetProcessDPIAware
WaitMessage
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
DestroyIcon
GetWindowDC
GetMonitorInfoW
MonitorFromWindow
MonitorFromPoint
GetWindowLongPtrW
GetDCEx
EnableMenuItem
GetSystemMenu
GetSystemMetrics
GetWindowPlacement
SetLayeredWindowAttributes
LoadCursorW
GetWindow
GetParent
SetWindowLongPtrA
GetWindowLongPtrA
SetWindowLongW
GetWindowLongW
GetWindowLongA
OffsetRect
FillRect
GetSysColorBrush
GetSysColor
WindowFromPoint
MapWindowPoints
GetCursorPos
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthA
SetWindowTextA
RedrawWindow
InvalidateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
UpdateWindow
IsWindowEnabled
EnableWindow
ReleaseCapture
SetCapture
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPos
ShowWindow
DestroyWindow
IsChild
CreateWindowExA
GetClassInfoExA
RegisterClassExA
CallWindowProcA
DefWindowProcA
PostMessageA
PeekMessageA
TrackMouseEvent
RegisterWindowMessageA
GetClassNameA
SendMessageA
GetWindowTextA

ole32

RevokeDragDrop
OleInitialize
OleUninitialize
RegisterDragDrop

comctl32

InitCommonControlsEx
ord410
ord413

kernel32

IsValidCodePage
FindNextFileA
FindFirstFileExA
GetProcessHeap
GetTimeZoneInformation
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
ReadFile
GetConsoleCP
FlushFileBuffers
GetACP
GetEnvironmentStringsW
HeapFree
GetCurrentDirectoryW
GetFullPathNameW
GetDriveTypeW
HeapAlloc
GetFileType
SetStdHandle
GetModuleHandleExW
RaiseException
RtlPcToFileHeader
RtlUnwindEx
LoadLibraryW
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
ReleaseSemaphore
GetVersionExW
GetModuleFileNameW
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
GetOEMCP
HeapReAlloc
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SetThreadPriority
CreateThread
SwitchToThread
SignalObjectAndWait
CreateTimerQueue
FreeEnvironmentStringsW
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
ResetEvent
SetEvent
GetStringTypeW
GetLocaleInfoW
LCMapStringW
CompareStringW
GetCPInfo
DecodePointer
EncodePointer
GetTickCount
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
CreateEventW
InitializeCriticalSectionAndSpinCount
GetExitCodeThread
WaitForSingleObjectEx
DuplicateHandle
QueryPerformanceCounter
DeleteCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
AreFileApisANSI
SetFilePointerEx
SetEndOfFile
GetFileAttributesExW
FindNextFileW
FindFirstFileExW
FindClose
CreateFileW
CreateDirectoryW
FormatMessageW
WriteConsoleA
GetConsoleMode
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
WriteFile
GetStdHandle
WriteConsoleW
GetDynamicTimeZoneInformation
GetCurrentProcessId
VirtualAlloc
GetCurrentThread
LoadLibraryExW
GetProcAddress
FreeLibrary
VirtualFree
VirtualProtect
IsWow64Process
WriteProcessMemory
ReadProcessMemory
VirtualQueryEx
VirtualProtectEx
VirtualAllocEx
CreateProcessA
GetExitCodeProcess
TerminateProcess
ExitProcess
WaitForSingleObject
SetLastError
ReadConsoleW
HeapSize
InitializeSListHead
GetLastError
GetModuleHandleA
GetCurrentProcess
FormatMessageA
LocalFree
WideCharToMultiByte
ResumeThread
CloseHandle
FreeConsole
GetCurrentThreadId
GetModuleHandleW
GetStartupInfoA
MultiByteToWideChar
Sleep
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
GetCommandLineA
GetCommandLineW
GetEnvironmentVariableA
SetEnvironmentVariableA
GetModuleFileNameA
OutputDebugStringW

Sections

.text
Size: 794KB - Virtual size: 794KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.detourc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.detourd
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 269KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac2017a22ae9705b37e8c39451a1568d

Headers

DLL Characteristics

File Characteristics

Imports

shell32

gdi32

gdiplus

user32

ole32

comctl32

kernel32

Sections

.text Size: 794KB - Virtual size: 794KB

.rdata Size: 260KB - Virtual size: 260KB

.data Size: 26KB - Virtual size: 35KB

.pdata Size: 42KB - Virtual size: 41KB

.detourc Size: 8KB - Virtual size: 8KB

.detourd Size: 512B - Virtual size: 24B

.rsrc Size: 269KB - Virtual size: 269KB

.reloc Size: 11KB - Virtual size: 10KB

.text
Size: 794KB - Virtual size: 794KB

.rdata
Size: 260KB - Virtual size: 260KB

.data
Size: 26KB - Virtual size: 35KB

.pdata
Size: 42KB - Virtual size: 41KB

.detourc
Size: 8KB - Virtual size: 8KB

.detourd
Size: 512B - Virtual size: 24B

.rsrc
Size: 269KB - Virtual size: 269KB

.reloc
Size: 11KB - Virtual size: 10KB