Overview

overview

5

Static

static

3

Launcher.exe

windows11-21h2-x64

5

d3dcompiler_47.dll

windows11-21h2-x64

1

libG1LESv2.dll

windows11-21h2-x64

1

locales/de.ps1

windows11-21h2-x64

1

resources/...m.html

windows11-21h2-x64

1

resources/...ng.dll

windows11-21h2-x64

1

resources/...ng.dll

windows11-21h2-x64

1

resources/...ng.dll

windows11-21h2-x64

1

resources/...47.dll

windows11-21h2-x64

1

resources/ffmpeg.dll

windows11-21h2-x64

1

Analysis

  • max time kernel
    125s
  • max time network
    130s
  • platform
    windows11-21h2_x64
  • resource
    win11-20231222-en
  • resource tags

    arch:x64arch:x86image:win11-20231222-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    24/01/2024, 04:23

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Launcher.exe

  • Size

    661KB

  • MD5

    d4996c0ad829ea702e10e9e1f5577c86

  • SHA1

    42c166128e2ce56126aa0c34f17a1f896478fbf1

  • SHA256

    519cd370f3ca7bfb1021aa273b1067bdc5e1d5a7071edf550d424321bc8b6aad

  • SHA512

    f5ae22f34bdd8396e748778570d305b91b077f6ae816a6d521d9fb66f073638cc6c995ef1a06f654a4b40c1609dee02ef99e71435835814b94e269aaef39f8c3

  • SSDEEP

    12288:GevK8KS9zaC7hQZSd++l5bRc4pmMXgi2Rqyq1e+NSrojji+W1P40:GJG9zHhoSY+lHccVXgTqf1BNSroviBPl

Score
5/10

Malware Config

Signatures

  • Suspicious use of SetThreadContext 1 IoCs
  • Suspicious use of WriteProcessMemory 9 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Launcher.exe
    "C:\Users\Admin\AppData\Local\Temp\Launcher.exe"
    1⤵
    • Suspicious use of SetThreadContext
    • Suspicious use of WriteProcessMemory
    PID:4424
    • C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
      "C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
      2⤵
        PID:1400

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • memory/1400-5-0x0000000000400000-0x000000000049B000-memory.dmp

            Filesize

            620KB

            Download

          • memory/1400-8-0x0000000000400000-0x000000000049B000-memory.dmp

            Filesize

            620KB

            Download

          • memory/1400-13-0x0000000000400000-0x000000000049B000-memory.dmp

            Filesize

            620KB

            Download

          • memory/1400-12-0x0000000001190000-0x0000000001191000-memory.dmp

            Filesize

            4KB

            Download

          • memory/4424-0-0x00000000008B0000-0x000000000095C000-memory.dmp

            Filesize

            688KB

            Download

          • memory/4424-1-0x00000000744B0000-0x0000000074C61000-memory.dmp

            Filesize

            7.7MB

            Download

          • memory/4424-2-0x0000000005480000-0x0000000005490000-memory.dmp

            Filesize

            64KB

            Download

          • memory/4424-10-0x00000000744B0000-0x0000000074C61000-memory.dmp

            Filesize

            7.7MB

            Download

          • memory/4424-11-0x0000000002E30000-0x0000000004E30000-memory.dmp

            Filesize

            32.0MB

            Download

          • memory/4424-14-0x0000000002E30000-0x0000000004E30000-memory.dmp

            Filesize

            32.0MB

            Download