VLauncher[.]exe

Resubmissions

02/02/2024, 17:33

240202-v4y6qabdh8 3

02/02/2024, 17:29

240202-v2m1nsdefm 3

Sharing

Copy URL Twitter E-mail

General

Target

VLauncher.exe
Size

143KB
MD5

af6081a93844466a33a5a35a00c76550
SHA1

2b9185b040f8bace0d14cf9d972dad42bf919b39
SHA256

d70fbc012ea36a2ec6606ac5ec6261539d1fa477ae44149110b0640d9837a715
SHA512

0d5b5eff36d46c78a9be3456f3b17cab97f9369f4cabd571a77c0885f0414bcf33422eb9cc22d466333b868fcc8dbf12fe157772eaa7c6fe24ba5d52862fe827
SSDEEP

3072:2khqKvJxRMaQVlLk0CEgOsAkv/snCXbkapTBfR4oe:VMlV8unCXbkapTBJ4oe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VLauncher.exe

Files

VLauncher.exe
.exe windows:4 windows x86 arch:x86

49179bb488955d79d18196b9ba68dbce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
wcslen
wcscpy
wcsncpy
wcscat
strlen
strcpy
strcat
memcmp
_stricmp
_wcsdup
_wfopen
fclose
malloc
memcpy
free
wcsstr
_wcsnicmp
wcsncmp
memmove
_wcsicmp
setlocale
swscanf
wcscmp
fabs
ceil
floor
sprintf
strcmp
tolower
_strdup
_errno
strncmp
strtoul
_stat
memchr
fseek
clearerr
fread
ferror
ftell
fopen
_fileno
_fstat
time
strrchr
fwrite
_snprintf
_fdopen
_close
remove
_setmode
qsort
realloc
mktime
putc
localtime
_wmktemp
_wcreat
_mktemp
_creat
_vsnwprintf

kernel32

GetModuleHandleW
HeapCreate
HeapDestroy
ExitProcess
HeapAlloc
HeapFree
SetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
CloseHandle
InitializeCriticalSection
GetEnvironmentVariableW
SetEnvironmentVariableW
GetCurrentProcess
DuplicateHandle
CreatePipe
GetStdHandle
CreateProcessW
WaitForSingleObject
EnterCriticalSection
LeaveCriticalSection
CreateFileW
SetFilePointer
SetEndOfFile
WriteFile
GetFileSize
ReadFile
MultiByteToWideChar
WideCharToMultiByte
DeleteFileW
MoveFileExW
MoveFileExA
HeapReAlloc
LoadLibraryW
GetProcAddress
FreeLibrary
SetLastError
GetVersionExW
TlsAlloc
MulDiv
GetCurrentDirectoryW
SetCurrentDirectoryW
GetDriveTypeW
FindFirstFileW
FindClose
GetFileAttributesW
GetLastError
FindNextFileW
MoveFileW
CreateDirectoryW
DeleteCriticalSection
LoadLibraryA
Sleep

user32

MessageBoxW
GetForegroundWindow
GetWindowThreadProcessId
IsWindowVisible
GetWindowLongW
IsWindowEnabled
EnableWindow
EnumWindows
SetWindowPos
CharLowerW
DestroyWindow
GetSysColor
GetSysColorBrush
CallWindowProcW
SendMessageW
GetDC
GetSystemMetrics
ReleaseDC
CreateWindowExW
SetWindowLongW
GetParent
GetWindow
GetWindowRect
SetWindowTextW
InvalidateRect
GetWindowTextLengthW
GetWindowTextW
SetRect
DrawTextW
GetPropW
RedrawWindow
RemovePropW
DefWindowProcW
SetPropW
FillRect
MapWindowPoints
MoveWindow
SetActiveWindow
UnregisterClassW
DestroyAcceleratorTable
LoadIconW
LoadCursorW
RegisterClassW
AdjustWindowRectEx
ShowWindow
CreateAcceleratorTableW
PeekMessageW
MsgWaitForMultipleObjects
GetMessageW
GetActiveWindow
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
SetFocus
GetFocus
GetClientRect
EnumChildWindows
PostMessageW
DefFrameProcW
IsChild
GetClassNameW
GetKeyState
DestroyIcon
RegisterWindowMessageW

gdi32

GetStockObject
SetBkColor
SetTextColor
SelectObject
GetTextExtentPoint32W
GetObjectW
CreateCompatibleDC
DeleteDC
SetStretchBltMode
StretchBlt
GetObjectType
DeleteObject
CreateCompatibleBitmap
CreateDCW
CreateSolidBrush
GetDIBits
CreateDIBSection
BitBlt
CreateBitmap
SetPixel
GetDeviceCaps
CreateFontW

comdlg32

GetSaveFileNameW
GetOpenFileNameW

comctl32

InitCommonControlsEx
ImageList_Destroy
ImageList_Replace
ImageList_Add
ImageList_ReplaceIcon
ImageList_Remove
ImageList_AddMasked
ImageList_Create

ole32

CoInitialize
RevokeDragDrop

shell32

ShellExecuteExW

Sections

.code
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

49179bb488955d79d18196b9ba68dbce

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comdlg32

comctl32

ole32

shell32

Sections

.code Size: 7KB - Virtual size: 7KB

.text Size: 99KB - Virtual size: 99KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 7KB - Virtual size: 9KB

.rsrc Size: 11KB - Virtual size: 10KB

.code
Size: 7KB - Virtual size: 7KB

.text
Size: 99KB - Virtual size: 99KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 7KB - Virtual size: 9KB

.rsrc
Size: 11KB - Virtual size: 10KB