Vast Launcher[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

Vast Launcher.exe
Size

6.8MB
MD5

71063de9135eef1e4482f7c1151e9004
SHA1

2bc2c9ee4f1462cfd97f1b2af102da9bbbc89ecc
SHA256

7af9c800ab18fcbb6bac668e48c63c0c76a93ae4c8bc6c6fd01921524faaeda3
SHA512

eac2308ac85b37fd95f9354df3bf01ddfec31739c01734af81e45a92c17c25d24ac6fec4308693fdc5faba1afb1148ab0440f3a896ae0add33ca028cfa9c67dd
SSDEEP

98304:HC1UwwBCY7FqPWKIo8dwwyANvBgSKW48tsDTmJbiQ5ncDMoJY3QxPmlXTJ3TWpFn:3KSmSfDkrGch

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Vast Launcher.exe

Files

Vast Launcher.exe
.exe windows:6 windows x64 arch:x64

ffc0791a901fb7743f5a6b207a1162c6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\afvas\Desktop\.NewDiscordShit\AccountCreators\VastGen\PROD\Launcher\src-tauri\target\release\deps\VastLauncher.pdb

Imports

kernel32

UpdateProcThreadAttribute
GetTempPathW
CreateProcessW
GetWindowsDirectoryW
GetSystemDirectoryW
WaitForMultipleObjects
ReadFileEx
CreateNamedPipeW
GetFullPathNameW
ExitProcess
LoadLibraryA
CancelIo
CreateEventW
GetFinalPathNameByHandleW
DeleteFileW
FindFirstFileW
CreateDirectoryW
GetFileInformationByHandleEx
GetFileAttributesW
GetModuleFileNameW
GetLastError
OutputDebugStringA
OutputDebugStringW
WaitForSingleObjectEx
RaiseException
EncodePointer
MultiByteToWideChar
GetEnvironmentVariableW
CreateFileW
FindClose
GetProcessHeap
HeapFree
HeapAlloc
WaitForSingleObject
ReleaseMutex
FormatMessageW
HeapReAlloc
QueryPerformanceFrequency
CreateMutexA
InitializeCriticalSectionAndSpinCount
GetFileInformationByHandle
SleepConditionVariableSRW
GetConsoleMode
WakeAllConditionVariable
GetProcessId
TerminateProcess
GetExitCodeProcess
SleepEx
WriteFileEx
WriteConsoleW
GetCurrentProcessId
InitializeProcThreadAttributeList
LoadLibraryW
LCIDToLocaleName
GetUserDefaultUILanguage
TryAcquireSRWLockExclusive
FreeLibrary
GetProcAddress
LoadLibraryExW
RtlPcToFileHeader
lstrlenW
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
TzSpecificLocalTimeToSystemTime
CreateThread
GetCurrentThread
DeleteCriticalSection
GetModuleHandleW
CloseHandle
InitializeSListHead
TlsAlloc
GetCurrentThreadId
TlsGetValue
IsDebuggerPresent
UnhandledExceptionFilter
GetStdHandle
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
RtlUnwindEx
TlsFree
ReleaseSRWLockShared
AcquireSRWLockShared
GetCurrentProcess
DuplicateHandle
GetSystemInfo
GetCommandLineW
TlsSetValue
SetEnvironmentVariableW
GetEnvironmentStringsW
GetCurrentDirectoryW
SetLastError
RtlLookupFunctionEntry
RtlVirtualUnwind
RtlCaptureContext
SetHandleInformation
QueryPerformanceCounter
SetWaitableTimer
CreateWaitableTimerExW
SwitchToThread
SetThreadStackGuarantee
AddVectoredExceptionHandler
CompareStringOrdinal
DeleteProcThreadAttributeList
FreeEnvironmentStringsW
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
GetModuleHandleA
Sleep
CreateIoCompletionPort
SetFileCompletionNotificationModes
GetQueuedCompletionStatusEx
PostQueuedCompletionStatus
ReadFile
GetOverlappedResult

user32

GetForegroundWindow
ClientToScreen
ValidateRect
GetActiveWindow
IsIconic
SetMenu
GetClientRect
ReleaseCapture
DispatchMessageA
GetMessageA
GetCursorPos
PostQuitMessage
AppendMenuW
CreateMenu
SetMenuItemInfoW
SetCursor
LoadCursorW
GetUpdateRect
CheckMenuItem
VkKeyScanW
InvalidateRgn
GetKeyboardState
CreateAcceleratorTableW
SendInput
SetForegroundWindow
SetWindowPos
GetWindowTextW
GetWindowTextLengthW
SetWindowTextW
IsProcessDPIAware
GetDC
GetWindowPlacement
SystemParametersInfoA
IsWindowVisible
AdjustWindowRectEx
GetWindowRect
MonitorFromPoint
EnumDisplayMonitors
SetWindowPlacement
GetWindowLongW
ToUnicodeEx
PeekMessageW
SetCursorPos
GetKeyState
MapVirtualKeyExW
GetKeyboardLayout
MonitorFromRect
ChangeDisplaySettingsExW
FlashWindowEx
DefWindowProcW
TrackMouseEvent
CreateIcon
RedrawWindow
GetTouchInputInfo
GetWindowLongPtrW
SetWindowDisplayAffinity
GetMenu
ShowCursor
ClipCursor
GetClipCursor
EnableMenuItem
GetSystemMenu
ShowWindow
SetWindowLongW
SendMessageW
GetRawInputData
DestroyIcon
DestroyAcceleratorTable
PostThreadMessageW
PostMessageW
SetCapture
SetWindowLongPtrW
MsgWaitForMultipleObjectsEx
RegisterRawInputDevices
RegisterClassExW
RegisterWindowMessageA
TranslateMessage
TranslateAcceleratorW
EnumChildWindows
DispatchMessageW
GetAncestor
GetMessageW
MapVirtualKeyW
DestroyWindow
RegisterTouchWindow
GetSystemMetrics
IsWindow
CreateWindowExW
GetMonitorInfoW
MonitorFromWindow
GetAsyncKeyState
CloseTouchInputHandle
ScreenToClient

comctl32

SetWindowSubclass
RemoveWindowSubclass
DefSubclassProc

ole32

CoInitializeEx
CoUninitialize
CoTaskMemFree
RegisterDragDrop
CreateStreamOnHGlobal
OleInitialize
CoCreateInstance
CoTaskMemAlloc
RevokeDragDrop

shell32

DragFinish
SHGetKnownFolderPath
DragQueryFileW
SHAppBarMessage

gdi32

DeleteObject
GetDeviceCaps
CreateRectRgn

dwmapi

DwmEnableBlurBehindWindow

advapi32

SystemFunction036
RegGetValueW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
EventUnregister
EventWriteTransfer
EventSetInformation
EventRegister
GetUserNameW

uxtheme

SetWindowTheme

oleaut32

SetErrorInfo
GetErrorInfo
SysStringLen
SysFreeString

ntdll

NtDeviceIoControlFile
NtCancelIoFileEx
NtReadFile
NtCreateFile
RtlNtStatusToDosError
NtWriteFile

bcrypt

BCryptGenRandom

secur32

InitializeSecurityContextW
AcceptSecurityContext
DecryptMessage
FreeContextBuffer
QueryContextAttributesW
EncryptMessage
FreeCredentialsHandle
DeleteSecurityContext
AcquireCredentialsHandleA
ApplyControlToken

ws2_32

closesocket
freeaddrinfo
getaddrinfo
getpeername
getsockname
WSASocketW
bind
connect
ioctlsocket
getsockopt
shutdown
recv
send
WSASend
WSACleanup
WSAStartup
setsockopt
WSAIoctl
WSAGetLastError

crypt32

CertCloseStore
CertOpenStore
CertAddCertificateContextToStore
CertEnumCertificatesInStore
CertDuplicateCertificateContext
CertDuplicateCertificateChain
CertFreeCertificateContext
CertFreeCertificateChain
CertVerifyCertificateChainPolicy
CertGetCertificateChain
CertDuplicateStore

api-ms-win-crt-math-l1-1-0

pow
floor
round
trunc
__setusermatherr

api-ms-win-crt-string-l1-1-0

_wcsicmp
wcsncmp
strcpy_s
wcslen

api-ms-win-crt-convert-l1-1-0

_ultow_s
wcstol

api-ms-win-crt-runtime-l1-1-0

abort
_configure_narrow_argv
_cexit
__p___argv
_crt_atexit
_register_onexit_function
_set_app_type
_initterm_e
_initterm
_seh_filter_exe
__p___argc
_initialize_narrow_environment
_exit
exit
terminate
_get_initial_narrow_environment
_initialize_onexit_table
_c_exit
_register_thread_local_exe_atexit_callback

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__p__commode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-heap-l1-1-0

malloc
calloc
_set_new_mode
_callnewh
free

Sections

.text
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ffc0791a901fb7743f5a6b207a1162c6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

comctl32

ole32

shell32

gdi32

dwmapi

advapi32

uxtheme

oleaut32

ntdll

bcrypt

secur32

ws2_32

crypt32

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-heap-l1-1-0

Sections

.text Size: 4.0MB - Virtual size: 4.0MB

.rdata Size: 2.5MB - Virtual size: 2.5MB

.data Size: 13KB - Virtual size: 24KB

.pdata Size: 208KB - Virtual size: 207KB

_RDATA Size: 512B - Virtual size: 500B

.rsrc Size: 102KB - Virtual size: 102KB

.reloc Size: 29KB - Virtual size: 29KB

.text
Size: 4.0MB - Virtual size: 4.0MB

.rdata
Size: 2.5MB - Virtual size: 2.5MB

.data
Size: 13KB - Virtual size: 24KB

.pdata
Size: 208KB - Virtual size: 207KB

_RDATA
Size: 512B - Virtual size: 500B

.rsrc
Size: 102KB - Virtual size: 102KB

.reloc
Size: 29KB - Virtual size: 29KB