Overview

overview

8

Static

static

3

Launcher.zip

windows7-x64

1

Launcher.zip

windows10-1703-x64

1

Launcher.zip

windows10-2004-x64

1

Launcher/N...s.json

windows7-x64

3

Launcher/N...s.json

windows10-1703-x64

3

Launcher/N...s.json

windows10-2004-x64

3

Launcher/N...er.exe

windows7-x64

1

Launcher/N...er.exe

windows10-1703-x64

1

Launcher/N...er.exe

windows10-2004-x64

1

Launcher/N...er.exe

windows7-x64

1

Launcher/N...er.exe

windows10-1703-x64

8

Launcher/N...er.exe

windows10-2004-x64

8

Launcher/N...g.json

windows7-x64

3

Launcher/N...g.json

windows10-1703-x64

3

Launcher/N...g.json

windows10-2004-x64

3

Launcher/r...eb.dll

windows7-x64

1

Launcher/r...eb.dll

windows10-1703-x64

1

Launcher/r...eb.dll

windows10-2004-x64

1

Launcher/r...es.dll

windows7-x64

1

Launcher/r...es.dll

windows10-1703-x64

1

Launcher/r...es.dll

windows10-2004-x64

1

Launcher/r...og.dll

windows7-x64

1

Launcher/r...og.dll

windows10-1703-x64

1

Launcher/r...og.dll

windows10-2004-x64

1

Launcher/r...nt.dll

windows7-x64

1

Launcher/r...nt.dll

windows10-1703-x64

1

Launcher/r...nt.dll

windows10-2004-x64

1

Launcher/r...ng.dll

windows7-x64

1

Launcher/r...ng.dll

windows10-1703-x64

1

Launcher/r...ng.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Launcher.zip

  • Size

    29.3MB

  • Sample

    230828-sfl55seh9v

  • MD5

    b65690d8ee21df8cc177afb520c0c898

  • SHA1

    2c84a5ca859dc95f0e0620e533c26a9ae0a28466

  • SHA256

    bfd38a035e014b8a5f3a02d4511aade734f718b64e3fa483b9fe316a117bbb7f

  • SHA512

    761f57b956025dc66f99eb1e95d7d60e7d09e4beaaa2499b01a5365a9053cd797fb0771372bff913462788d762258e65a8be9a394930897e8905f683ab40faf5

  • SSDEEP

    393216:tlv/6ze1JOdSUhKMMN0vlVwD6rixQs4A9SWGAvd2XAiZp86/qF9Z8t22rs3sG98T:tlvize1alN3ALFiPZKdF9mthrs39q

Score
8/10
microsoftphishing

Malware Config

Targets

    • Target

      Launcher.zip

    • Size

      29.3MB

    • MD5

      b65690d8ee21df8cc177afb520c0c898

    • SHA1

      2c84a5ca859dc95f0e0620e533c26a9ae0a28466

    • SHA256

      bfd38a035e014b8a5f3a02d4511aade734f718b64e3fa483b9fe316a117bbb7f

    • SHA512

      761f57b956025dc66f99eb1e95d7d60e7d09e4beaaa2499b01a5365a9053cd797fb0771372bff913462788d762258e65a8be9a394930897e8905f683ab40faf5

    • SSDEEP

      393216:tlv/6ze1JOdSUhKMMN0vlVwD6rixQs4A9SWGAvd2XAiZp86/qF9Z8t22rs3sG98T:tlvize1alN3ALFiPZKdF9mthrs39q

    Score
    1/10
    behavioral1behavioral2behavioral3

    • Target

      Launcher/NovaLauncher.deps.json

    • Size

      135KB

    • MD5

      14b04cd54c58fa0089f6c2ccfe57f2ce

    • SHA1

      13ddecf5a783296ce34bfdd696ceda11bb285b99

    • SHA256

      33052640c8d0963764fb09182881b336ca907ab8b646ef15935570237dd3b90c

    • SHA512

      f1482c7cdd392f59f334ca84947a6d035b61127a02ddb27e9465b9dfddc6f4be53e198c635ee45f6ecc943923204f05a7f37150018cdad11a7b15c7bd1578080

    • SSDEEP

      3072:p/DowyJ/JfHtlcu7RO7nFcfRaqL1OmzklbpZnSwBv6iGQK:ui8

    Score
    3/10
    behavioral4behavioral5behavioral6

    • Target

      Launcher/NovaLauncher.dll

    • Size

      29.2MB

    • MD5

      8d4a246706232e6397ca4dd99b057d96

    • SHA1

      bc6c47c39cf86f225e98ad20cb9e819446a5660d

    • SHA256

      06984d0ff8ff8bcdf1ab5f228f02dbf7ba69e95c9b23c39c035c3360942b08d7

    • SHA512

      a0eadeca99c7a32cbd8b872d6d3e072e91136f9f13759a7b2eb2319df0e2626863b79439a1eef3d1d40fbc1402024d6dcbc4891fa6c303b5c36e536a81cbac86

    • SSDEEP

      393216:dAXdTaNaFFujIKL20APevvnOn+VSHoGO6fE+gDatz2lSo5RycRy3tZwZO8JEVAqu:dAXdeNaFW/Xt6Hhuf5033tOZpJEVH

    Score
    1/10
    behavioral7behavioral8behavioral9

    • Target

      Launcher/NovaLauncher.exe

    • Size

      149KB

    • MD5

      3ab8bb4b8a880d1eeab5a703b397c97b

    • SHA1

      0919d29602e3c51efa232f69f6891116c840c7eb

    • SHA256

      1b559687e555d6a3d13ba3a32cba23df5932ba16c6df594a6ca9ac6b30462f3e

    • SHA512

      2747dbf1a6c9292fc5eea06d81202a0534a5fb22ec12f91affb7f204df53c4d9a9ab03f73373001b0940762e4418b2645a93fc27635443780612d0f44996294a

    • SSDEEP

      3072:28vbzyQ6Y1YXrbNK+3FNxacPEMk6aRQAcTWG:2szAXNK+3FVGRQTTW

    Score
    8/10
    microsoftphishing

    • Downloads MZ/PE file

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft
    behavioral10behavioral11behavioral12

    • Target

      Launcher/NovaLauncher.runtimeconfig.json

    • Size

      372B

    • MD5

      d94cf983fba9ab1bb8a6cb3ad4a48f50

    • SHA1

      04855d8b7a76b7ec74633043ef9986d4500ca63c

    • SHA256

      1eca0f0c70070aa83bb609e4b749b26dcb4409784326032726394722224a098a

    • SHA512

      09a9667d4f4622817116c8bc27d3d481d5d160380a2e19b8944bdd1271a83f718415ce5e6d66e82e36819e575ec1b55f19c45213e0013b877b8d61e6feb9d998

    Score
    3/10
    behavioral13behavioral14behavioral15

    • Target

      Launcher/runtimes/browser/lib/net6.0/System.Text.Encodings.Web.dll

    • Size

      69KB

    • MD5

      dca87e84aefd1c22ae0169929ac9caf9

    • SHA1

      5c8522e6ace499025ca3e0ea3d2abd67518f4b5d

    • SHA256

      d71b40a7f179ddbc41c08e5cb2942e3f2614599b3124acf61b88475f87c780ae

    • SHA512

      07a175e8faacab963997501b2c0ba542c22f85d3430e7899af82444f55da7d43aa4431e2f1545f97cb51fc72ecf71abfe4d1983825ce56318b19cab3eaab6047

    • SSDEEP

      1536:4xuAEP6SrduX7xnEowdlsQD6A0OfL2Of47F+zK:QEP6Srdu99sln022/cW

    Score
    1/10
    behavioral16behavioral17behavioral18

    • Target

      Launcher/runtimes/win/lib/net6.0/System.Diagnostics.EventLog.Messages.dll

    • Size

      782KB

    • MD5

      b45a83547f477180ee9c15efd57d5ef7

    • SHA1

      2f43d70e079975d52e5b4c18ad8fd8a58e16bf6f

    • SHA256

      02bde8e118139188616e1e8300ed01f87c98a240615cdb7551c6ba369f922b5f

    • SHA512

      1efa1e661bf6c72cb778d99eb453bca59bbdfeeae5d199bdd6ac5a0bf946518d39d7baa2a6172815bcc1cb3e814979e7e9479a4d5a67a84070ebedb5cd80d715

    • SSDEEP

      192:snrZCHF0yk4zWIBZmUHSkiNHnhWgN7a8Wv2xgV8FGecX01k9z3ASeVn:2rkliKXAHRN7eHR9z7eN

    Score
    1/10
    behavioral19behavioral20behavioral21

    • Target

      Launcher/runtimes/win/lib/net6.0/System.Diagnostics.EventLog.dll

    • Size

      140KB

    • MD5

      ed20de80937271fca4834b2f0ecb9275

    • SHA1

      d145e5fa2d47af3a56a54681127cc5f61318445d

    • SHA256

      d30eb53998f2f3480655724b85033e5ed4e58789ec061e35c9f0dc3a799ca27d

    • SHA512

      af00668fe34655ac358def62bbb6a431f3b9ca902f2ff93fc9f01f4aed9889288786d0342c891f090df8282fb62b9104954bb5cbc9ce7e98d0773f8ff48b09c8

    • SSDEEP

      3072:ZMy5FcqauU424Vqhfjm3VxCWStMVsGvWS8osQJoQs29DHbFpC:xaE3g63VxCWyMVsKWS8QuIbu

    Score
    1/10
    behavioral22behavioral23behavioral24

    • Target

      Launcher/runtimes/win/lib/net6.0/System.Management.dll

    • Size

      289KB

    • MD5

      1df8b48b46a9c198ffda9887902a9780

    • SHA1

      a5ef9869e56ae707dfe72b2b1bf41764ce13fbbd

    • SHA256

      d4f2f6a81ada70c04071c999361314dc6f9088b841df0cf82942589aee0db1b5

    • SHA512

      d35a34df7f38b3e88521c0ef4f4c6399b053eef03395ed47d2f59e147720b1759e961125f44e98827631810806c25c8a27f9c0712726a1b8b60cb7538e3695e8

    • SSDEEP

      3072:0g6aiGesHtiwTRwfZJ2g/8a9OFaYsYjCdd4/FIV1UAcVueUryPfYKL/5m2U/DSFf:ZdeCRwfZJF8sOFjsYkX26B7/nacj

    Score
    1/10
    behavioral25behavioral26behavioral27

    • Target

      Launcher/runtimes/win/lib/net6.0/System.Runtime.Caching.dll

    • Size

      92KB

    • MD5

      ce31981853433b29527f40eb8634ce1b

    • SHA1

      dd283a39a945a08f833d30fb936a0f550a4aad1f

    • SHA256

      4b1bc84acfe8783a8faf063b2b3b461ef2abcb8ca4a1362635c4a204ddf3e1db

    • SHA512

      a3f2288572594d064f2ee9a636ac8c3e722ecf006cc2e469e43dad1cb0639e92f5b3134bb9d889e1455b4711dfe5c56599ee8366e233c23358ac09818707cbf8

    • SSDEEP

      1536:AfsiQQ4LShVOPxCzInMgwUjIdHsrA1yEMfcQiQAfYgzUEs:AXQlL5xKQsoKHsrAUp0Qi2gwEs

    Score
    1/10
    behavioral28behavioral29behavioral30

MITRE ATT&CK Enterprise v15

Tasks