Launcher[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

Launcher.zip
Size

5.1MB
MD5

c9fe13c1eb978273d9b7b516bbb43dc9
SHA1

25c7bbe68c056ddf0ef1f7873dd3a96f579108e1
SHA256

f19e0556c8c1588d09b3591b69c1bde288f9a9a97f1d23b79e5462dd39971d41
SHA512

03374d69672537611c8e7b466612b3acdd55dbf95bcb30b2d44f94f38be3ce6e7e28f9345525a087b753fcaab9fb574561bb69437822160da921f2d45a270e3b
SSDEEP

98304:ERUXoXXB3AnpQiSkrHHbbGyKGw1iWpd6Fh5kQ/5ZoWRtbYK:o8onBQynkrnboGw/TO5vSctbYK

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Console.exe
unpack001/Launcher.exe

Files

Launcher.zip
.zip
Console.exe
.exe windows:6 windows x64 arch:x64

53ba2b60ea63896b63bf2423a90d3fb7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

CreateFileW
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

SetClipboardData

advapi32

RegSetValueExA

wininet

InternetOpenA

Sections

.text
Size: - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp««
Size: - Virtual size: 655KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp««
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp««
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 142KB - Virtual size: 466KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Launcher.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
__MACOSX/._Console.exe
__MACOSX/._Launcher.exe

Sharing

General

Malware Config

Signatures

Files

53ba2b60ea63896b63bf2423a90d3fb7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

wininet

Sections

.text Size: - Virtual size: 245KB

.rdata Size: - Virtual size: 79KB

.data Size: - Virtual size: 11KB

.pdata Size: - Virtual size: 12KB

_RDATA Size: - Virtual size: 500B

.vmp«« Size: - Virtual size: 655KB

.vmp«« Size: 2KB - Virtual size: 1KB

.vmp«« Size: 1.8MB - Virtual size: 1.8MB

.reloc Size: 5KB - Virtual size: 5KB

.rsrc Size: 142KB - Virtual size: 466KB

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 5.1MB - Virtual size: 5.1MB

.sdata Size: 4KB - Virtual size: 3KB

.rsrc Size: 126KB - Virtual size: 126KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: - Virtual size: 245KB

.rdata
Size: - Virtual size: 79KB

.data
Size: - Virtual size: 11KB

.pdata
Size: - Virtual size: 12KB

_RDATA
Size: - Virtual size: 500B

.vmp««
Size: - Virtual size: 655KB

.vmp««
Size: 2KB - Virtual size: 1KB

.vmp««
Size: 1.8MB - Virtual size: 1.8MB

.reloc
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 142KB - Virtual size: 466KB

.text
Size: 5.1MB - Virtual size: 5.1MB

.sdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 126KB - Virtual size: 126KB

.reloc
Size: 512B - Virtual size: 12B