0c5e3216f7f6bb80663143f75e816acc2bcc760cb47d3f7569ebcc9bdbdc2281

Analysis

max time kernel
45s
max time network
51s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
25-01-2024 16:13

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Battly-Launcher-win-installer.exe
Size

87.5MB
MD5

8b85b5fb77be908dd9c778716d04ff7d
SHA1

7084bd7914ebf6b18123cbee618c0c075b906877
SHA256

0c5e3216f7f6bb80663143f75e816acc2bcc760cb47d3f7569ebcc9bdbdc2281
SHA512

3b32e106c8aad91f4a5c828e917fff0598ea27e7c88f232a9b87faf771770ba61ff652abd396c9585566093ebb7c69c3019c27b3793021fc74ea0594a4ae6680
SSDEEP

1572864:Qdc4v6Skl5L+Pe16OIb08t7oQwrCzDrelX+hefmUYL+RcN6kaWEgPM:gc48l5yW16OIbhahrCbelOh+YLB6kg7

Score

7^/10

Malware Config

Signatures

Executes dropped EXE 1 IoCs

Processes:

Battly-Launcher-win-installer.tmp

pid process

2344 Battly-Launcher-win-installer.tmp
Loads dropped DLL 1 IoCs

Processes:

Battly-Launcher-win-installer.exe

pid process

2128 Battly-Launcher-win-installer.exe

pid	process
2344	Battly-Launcher-win-installer.tmp

pid	process
2128	Battly-Launcher-win-installer.exe

Drops file in Program Files directory 64 IoCs

Processes:

Battly-Launcher-win-installer.tmp

description	ioc	process
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\@protobufjs\fetch\is-A6M2C.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\ajv\lib\dotjs\is-EHE2B.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\debug\is-LEIVT.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\ecc-jsbn\lib\is-USMR2.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\out\differentialDownloader\is-OOHGL.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\engine.io-client\build\cjs\is-UNA5O.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\locales\is-33TVG.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\locales\is-O1V7V.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\ajv\is-GTFKT.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\axios\lib\helpers\is-L6G2E.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\bulma-checkradio\is-S3DRM.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\node_modules\semver\internal\is-0US2T.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\out\providers\is-RURMC.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\locales\is-NRL62.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\asynckit\lib\is-32KSH.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\bulma\css\is-LDEJJ.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\bulma\sass\helpers\is-S2LU6.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\locales\is-LSE0P.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\is-AVN4G.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\@protobufjs\path\is-S4S1S.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\axios\lib\adapters\is-08TMT.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\builder-util-runtime\out\is-1DVFK.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\node_modules\semver\is-CEBDC.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\out\is-C56QO.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\asn1\lib\ber\is-F38ES.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\axios\lib\cancel\is-3GN4I.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\builder-util-runtime\out\is-N1OCV.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\is-0QKLM.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\node_modules\semver\ranges\is-O1DFD.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\bulma\css\is-GNF08.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\bulma\sass\components\is-KEEJU.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\delayed-stream\lib\is-TGMQQ.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\out\is-20BG3.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\is-AGVIG.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\ajv\lib\compile\is-FRJJM.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\axios\lib\helpers\is-NVK8V.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\bulma\sass\elements\is-SFV2B.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\bulma-checkradio\src\sass\is-TG2RQ.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\locales\is-AE1B7.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\@socket.io\component-emitter\is-1016V.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\assert-plus\is-5JF25.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\axios\lib\platform\browser\classes\is-UPO3M.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\builder-util-runtime\out\is-9EBAM.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\caseless\is-235SG.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\asn1\is-2FATP.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\out\is-MDM74.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\out\providers\is-M869H.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\is-PRQF2.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\locales\is-M6192.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\ajv\lib\compile\is-T5LFF.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\engine.io-client\build\cjs\is-HKNGC.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\aws4\is-RQB44.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\axios\lib\env\is-UL73R.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\out\is-M3FMG.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\is-ESJF2.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\asn1\lib\ber\is-88H50.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\core-util-is\lib\is-EMRB1.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\electron-updater\out\providers\is-24UTS.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\engine.io-client\build\esm\is-F0HJE.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\locales\is-FO5T0.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\locales\is-9829P.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\ajv\is-07KML.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\asynckit\lib\is-LNFRU.tmp	Battly-Launcher-win-installer.tmp
File created	C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\axios\is-S01KV.tmp	Battly-Launcher-win-installer.tmp

Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes:

Battly-Launcher-win-installer.tmp

pid process

2344 Battly-Launcher-win-installer.tmp
2344 Battly-Launcher-win-installer.tmp
Suspicious use of FindShellTrayWindow 1 IoCs

Processes:

Battly-Launcher-win-installer.tmp

pid process

2344 Battly-Launcher-win-installer.tmp

pid	process
2344	Battly-Launcher-win-installer.tmp
2344	Battly-Launcher-win-installer.tmp

pid	process
2344	Battly-Launcher-win-installer.tmp

Suspicious use of WriteProcessMemory 7 IoCs

Processes:

Battly-Launcher-win-installer.exe

description	pid	process	target process
PID 2128 wrote to memory of 2344	2128	Battly-Launcher-win-installer.exe	Battly-Launcher-win-installer.tmp
PID 2128 wrote to memory of 2344	2128	Battly-Launcher-win-installer.exe	Battly-Launcher-win-installer.tmp
PID 2128 wrote to memory of 2344	2128	Battly-Launcher-win-installer.exe	Battly-Launcher-win-installer.tmp
PID 2128 wrote to memory of 2344	2128	Battly-Launcher-win-installer.exe	Battly-Launcher-win-installer.tmp
PID 2128 wrote to memory of 2344	2128	Battly-Launcher-win-installer.exe	Battly-Launcher-win-installer.tmp
PID 2128 wrote to memory of 2344	2128	Battly-Launcher-win-installer.exe	Battly-Launcher-win-installer.tmp
PID 2128 wrote to memory of 2344	2128	Battly-Launcher-win-installer.exe	Battly-Launcher-win-installer.tmp

C:\Users\Admin\AppData\Local\Temp\Battly-Launcher-win-installer.exe
"C:\Users\Admin\AppData\Local\Temp\Battly-Launcher-win-installer.exe"
1⤵
- Loads dropped DLL
- Suspicious use of WriteProcessMemory
PID:2128

C:\Users\Admin\AppData\Local\Temp\is-NVCS0.tmp\Battly-Launcher-win-installer.tmp
"C:\Users\Admin\AppData\Local\Temp\is-NVCS0.tmp\Battly-Launcher-win-installer.tmp" /SL5="$40128,90701607,832512,C:\Users\Admin\AppData\Local\Temp\Battly-Launcher-win-installer.exe"
2⤵
- Executes dropped EXE
- Drops file in Program Files directory
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of FindShellTrayWindow
PID:2344

C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe
"C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe"
3⤵
PID:1168

C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe
"C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe"
1⤵
PID:1496

C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe
"C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe"
1⤵
PID:2964

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
52.6MB

MD5
ee0e02f2811b63096dfaf4023c5c5456

SHA1
a5f6e31d1ee1a50da721883e5e3b2291b4e09680

SHA256
47f41665d185461c6fc7003434957ed7ce0cf77c7ea32746c4c8b4f36a74f9b9

SHA512
8d6a68a8c3304ba52a2e274945b0dea0e916d9d8dce566f0e5434e0edc44cd163925ddf6b46cd7c48db5383a92ae31d56f3b549a6c718552b549c20fda1e31aa

Download Submit
C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
694KB

MD5
6e686bda00dd632187b2030d6a76a8fc

SHA1
239f55c8b3a895ce53ed9e8d574472b9945ce04b

SHA256
50198fc301d720ad7df00f1297a6350a69d27265fbe4803e05ebdffb3027af23

SHA512
6a7130b0f83e317df3909c88b57d118194a59424bec50bea143d8a0530cdb450554b96e03697433125ff1fb25ad94bf2b9034db9455b0c2f0ea3a1ffe8267d19

Download Submit
C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
375KB

MD5
42277954336b201e4406b666beb5e391

SHA1
96f2a5b35378308f18aea83e4fd6298d81347c14

SHA256
b0e0d238f51e183ae5396569f5efaafb8ece0202e3c0048f1a5253a87aeb1eb0

SHA512
3ab91cec920dc6dc6d4909481d7f78e117b8d481cf32c641d9d79631240a465019e025287ad11cb442c5f157e4b5b28e090ee2618ef6e1a51f647dd352bfdc36

Download Submit
C:\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
1.2MB

MD5
217606f3c7ecc2bc3bea3f0a1d8d3603

SHA1
79c35c3d1a38798533bf03aa4bbc52556fa921d1

SHA256
07155d2047443570fc85310913f83d2c7384a94422fa1802e70d8aedf541ce97

SHA512
32c4c3e97bd2c94029f20a75b8e67aa6d3a66ddd74c738d7246757816b8239b5ee81ae1d4872eae2a3de588eddc026343da3cdd46185e899aeb50fc0da2f1306

Download Submit
C:\Program Files (x86)\Battly Launcher\ffmpeg.dll
Filesize
987KB

MD5
f499eb23d5e133907e8c96e42891aaeb

SHA1
4ab7bff510a569931302d7a4655e7170240a90f8

SHA256
27d3a2fd4ad3d53eec7ecc53efc6259a7c82147ac13c471ea4cf5057db80102e

SHA512
904a899295572f1d5654a2d260109d3028b1b0d7a80cf968e9c932994679a5deedfcb3658df01b1c18f118bc7df6c90823ab29b6cabff8c9e8a64a63a4384e38

Download Submit
C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\@protobufjs\codegen\is-5SR5B.tmp
Filesize
1KB

MD5
532013e80f57c86a3d7176374afe6380

SHA1
e40a5d2090efd5d2eae97987590d414d7b1389f8

SHA256
a67b34a24a5daddcce46aea68c5004e4442bbfb63690329fa607bf4de4269794

SHA512
db98bcc743122ae1ced03c2d7e4efc4cd090d61b75a2eeee0534cff58ef6ec9a313ad826d4bcf490378a8b13c8a360f20a026df83700c0244113988d7e35b7f5

Download Submit
C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\jsprim\node_modules\extsprintf\is-CC3RQ.tmp
Filesize
1KB

MD5
bc3c23d98d7aa86bbf232058884e19b2

SHA1
772b18147b3bf826978f984f8e01562a9e3cc254

SHA256
5626c1e21f73f049d1c26ab8d34c95f26ee33d9b2dafb49af21114b087fb8d04

SHA512
f92b92b1623f00ef51882f3c8d17e0d010bc5261bf0eb8e9b8b4b6cd7d9f49708e43114ff893f2788edfed945a5c02f7d13c1bb58ab3f426aa8021df362dd2dc

Download Submit
C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\lru-cache\is-CC7FQ.tmp
Filesize
765B

MD5
82703a69f6d7411dde679954c2fd9dca

SHA1
bb408e929caeb1731945b2ba54bc337edb87cc66

SHA256
4ec3d4c66cd87f5c8d8ad911b10f99bf27cb00cdfcff82621956e379186b016b

SHA512
3fa748e59fb3af0c5293530844faa9606d9271836489d2c8013417779d10cc180187f5e670477f9ec77d341e0ef64eab7dcfb876c6390f027bc6f869a12d0f46

Download Submit
C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\oauth-sign\is-BB1NA.tmp
Filesize
8KB

MD5
f3f8ead5440d1c311b45be065d135d90

SHA1
05979f0750cf5c2a17bd3aa12450849c151d8b7c

SHA256
d446a8c73d7bbe4872d6524b15ae206f9a2d7eb53f8c9cb6e6c893a43acc5276

SHA512
d52ead0329e9223dce3d54f83c9e8caab7974355c248e2e85a1a8aa3198af402507761c22bad31307ae3bda06528ed0b3487e9ac9f6a6c3c413e09a5acac915d

Download Submit
C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\protobufjs\dist\minimal\is-KIODC.tmp
Filesize
77KB

MD5
80c6c0afb34d50084bef13963e6c212b

SHA1
5cdeff53cf6aa0611c4923acaae49a8dd5e457ed

SHA256
bf0a1363ceb5fe2291336cbb315cf8629c6940f14ebfb5384faab553d4a611d8

SHA512
febf5f748f9dd4347dd801e7fc26da2ba5b02c02515bcee8b35c3c484e5ea2bb1826f9d2ce87a6535aed1795bde8d84fe67185e57e11fc5a59f22a2165e8a73f

Download Submit
C:\Program Files (x86)\Battly Launcher\resources\app\node_modules\sshpk\is-6NK8D.tmp
Filesize
1KB

MD5
38ecf0a3a3894f404ca99c2a08924afc

SHA1
10b8ac49ffb8f7cc8bdca9303209a1b3b2f3587d

SHA256
82f8e8150cc12bb0895291c63ffa618d5652daf6265f63203ce0043955066ba4

SHA512
f0c68e411d3b7759b30fa74ea37663f4ea4968fdb8ebd4016c9ecbc5bcf7d956941d0c1f81e66abb73676d40379240d828b0a6ac36c3ade7ba11b62b5ed14c62

Download Submit
\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
5.7MB

MD5
c444a432e9f740b5923f588c09b5a9dc

SHA1
af4d9ada94ea9297c0e71b75963b60e2d35e8a6f

SHA256
3eea63574c942be28760c9d133551557347c710924bf60307eabf5cf69ac0aaa

SHA512
15789e9308a53e2f81980b56d9a2382939bbdd0ba6b3688b837e5638a63976bdee4d1bdd32df5ab164db4d8d50f24e1373bcc634ee81505d419d86274e96b2a0

Download Submit
\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
3.3MB

MD5
590f58443aab7ab1a59a39d3ebd69fee

SHA1
26840ebf895f9de49136be33b5b256e52c3c4380

SHA256
5db54621b9743db349f4f2e0ebabdfdd733837ae54fccdd980f4e5c67eac4d82

SHA512
0273340a3b0c96e380f16beb72f611c3ed34aeab9219dd75fac1cb2ece0909b6c095416848f3c0153647a8b529fcdf8f195930e55eab0e6a4d9977c3eceaac8b

Download Submit
\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
4.9MB

MD5
9779dbcf41a3e6660cd761e6a00209db

SHA1
5486166636c5199264768c98d6bdca289e4e63da

SHA256
8ccfe41d79aee671a06013b8060cf6ce0714da6cbb18b058eb0b33f7cf4612e8

SHA512
267d541e2010fa534d1e9f23a5c39bf98cbdbc22ab858d29963d7f54549aee3f553f0ec49e6b36c8328fd3a28cd2608389e3e77005181722faf344fde53ee2f3

Download Submit
\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
5.3MB

MD5
a7ac38c3274284082e6ba5f37137fcd6

SHA1
eaf6c3f1b3b678c3aa3b3d26d47c11c6a06b4f43

SHA256
c9f603dfd8368263947e74e2e52f3416f3b595da251bda5e8c22aa9289a15d4e

SHA512
d41c6f5e7a9f05908357328acde9c8e8ed20890f67da7295f71f95cfac900327d3d2bce4cf71a339dad9aad4962143c2ed80399e87f8b882995b10d7a8495c64

Download Submit
\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
5.9MB

MD5
a7a6a4449eddf8406d05044199576bb4

SHA1
521af32919ed433bcfa935bd1dae21947a354355

SHA256
f2866c627428338ffee2d61b3978bcf86fe1fc9c95e38668cad0073ee7c59a1a

SHA512
a601ea07c13bce8f2faa5fa0ca7827d19031a2b6e5be51a772ab4784b187e5a6810a0aaa81cfd41dde8b50c2bc507d73ec3ec3d74e9e199efe413349f6d7faa9

Download Submit
\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
5.6MB

MD5
8162e7a16a48f4a1ff436edac2acef6a

SHA1
9c89d52e1657a4fc2cc6f33ff963d0f6035eeb04

SHA256
7990c39025682d97a164edd51f23d5fb005920903cbcf587a6ac8cf8c737fa3a

SHA512
01e77b1edb641a15eec82c402d31afd5518ca65ab94b241d3f7c40451b701da82ab435b11e0aff86d3a3ad6a366254d5492ca05c93dc5d08df625a48c56ae3fe

Download Submit
\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
7.5MB

MD5
e1a932ad1874df589c257256b4ee9a09

SHA1
0d2d23061283a937ca68c7faa5edca2a73504ad6

SHA256
ce1588b85ae34ad848cf0e8f5b1c767d5cc1058ab185fa920fe87d49693831e1

SHA512
3c1c602b057fcd6ac013ae8b8040ba0ace11a5e75c17cc8c91a2e063910d30305ba5b5dedffecf1db3e4b52977659c9f5a279353ec8eea1742ae328160d79d15

Download Submit
\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
7.8MB

MD5
b903086e69b0f6854b19817b166578f6

SHA1
3a791197bb630e696b0b0d7313cbac3e5d3ceece

SHA256
7d9f104f7db8a47e202778120eb56329b0507893065d9a9810c99ba76aa053f1

SHA512
e3dbe3bf45ec7caf27c85f6528803c4951adbe9f7ba15daae0f986af392adbe9c21403bae1609647c32141245181cc799164b9689004fbc4c3abf19400fd7570

Download Submit
\Program Files (x86)\Battly Launcher\Battly Launcher.exe
Filesize
1.3MB

MD5
4dd532cdddc2b302ee63f5c9e03b9cb9

SHA1
16b370984944e1fb99fa0d512482498b2ebf29cc

SHA256
30e8c256924a4e2cb663f105bffca16e5d59568ee54e0d84b1aa7828b7ead640

SHA512
6b577dcef933cecaea6c5d44aafd6dbf3f895caa6a7e067191aa1da76ba55ade90245bfce415c41f2ee268695e31bb51c7fbc05adb44d9a1ef354beef99eed61

Download Submit
\Program Files (x86)\Battly Launcher\ffmpeg.dll
Filesize
873KB

MD5
8b7399c3115d8fc8557396d25960c565

SHA1
71ccbdf7d4666e9f0d0760a4a4c4af1c2a3fffe4

SHA256
734649aeb18d4ec91d185f310e777781c1724660ec25e2a6706d23ff942ff03e

SHA512
71eef56e4ae32e72b5e918191c82d240c72330a0f6a28dd7de9f0e18ba3ff4ef616b799e3552cbbecaa3c26de7bdcb1af58a7070bcf2476ece6069e102d5c891

Download Submit
\Program Files (x86)\Battly Launcher\ffmpeg.dll
Filesize
167KB

MD5
83ee1f70a9606aa666ce5316e589903f

SHA1
1bb963ca6ce552cdea43c47f1c7d1ca3284bb1c7

SHA256
5c37ffb44fe6ff63053a3c98829bfeba3922307371064a87570208ef7b794fe0

SHA512
b0df9087bdbb3b3a5e1b0bbc9bd5919b4af6063694cd830df5b8f79f0e1e759104972a93e003c8148c67d826948b7e4187dd3eae22fc9c17505c67d151d8240c

Download Submit
\Program Files (x86)\Battly Launcher\ffmpeg.dll
Filesize
1.1MB

MD5
f4aad1d3fe5f2585b680c38605f0a6ad

SHA1
95753babff60b3ec18b74856e0f0f38043d287b3

SHA256
27e76d459902845d24b2dbf9518014147db71c99217077107f5ccf1bf6bc69a2

SHA512
8e4e88f8f188264c3471bcdc04e760f332f2d09e7c20a052d30fc77c3599d2857268109c18b6cb188339cb522ec53fec0943858a14c23426e2025c2aa02b0790

Download Submit
\Users\Admin\AppData\Local\Temp\is-NVCS0.tmp\Battly-Launcher-win-installer.tmp
Filesize
3.1MB

MD5
d7967ad8ffbc60b7255b62dbf6a733cc

SHA1
0a293aa4a177a93879eb40aba7930c1d7be0c0ff

SHA256
145f163d01ffbff37ea6cd7acc5f3384cd3e385a41ed707c3c2c67600b0e2da9

SHA512
e7efecd12b28881bd510897b026b00df759bb9e97896d6904504eeefd18750f96571f62b1e8dc2d19de43dd1d7a333c685d9396b3e5889199a73094e93ec5d69

Download Submit
memory/2128-1-0x0000000000400000-0x00000000004D8000-memory.dmp

Filesize
864KB

Download
memory/2128-9-0x0000000000400000-0x00000000004D8000-memory.dmp

Filesize
864KB

Download
memory/2128-3354-0x0000000000400000-0x00000000004D8000-memory.dmp

Filesize
864KB

Download
memory/2344-21-0x0000000000400000-0x000000000071C000-memory.dmp

Filesize
3.1MB

Download
memory/2344-3353-0x0000000000400000-0x000000000071C000-memory.dmp

Filesize
3.1MB

Download
memory/2344-3340-0x0000000000400000-0x000000000071C000-memory.dmp

Filesize
3.1MB

Download
memory/2344-16-0x0000000000400000-0x000000000071C000-memory.dmp

Filesize
3.1MB

Download
memory/2344-14-0x0000000000240000-0x0000000000241000-memory.dmp

Filesize
4KB

Download
memory/2344-13-0x0000000000400000-0x000000000071C000-memory.dmp

Filesize
3.1MB

Download
memory/2344-10-0x0000000000400000-0x000000000071C000-memory.dmp

Filesize
3.1MB

Download
memory/2344-8-0x0000000000240000-0x0000000000241000-memory.dmp

Filesize
4KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads