Resubmissions

07-07-2024 13:10

240707-qevd1ssgqk 10

07-07-2024 13:08

240707-qda9ravglh 10

General

  • Target

    Battly-Launcher-Windows.exe

  • Size

    183.1MB

  • MD5

    777dae8f41c5c9ba97b798fcd52612de

  • SHA1

    03ec3ee7b1e1a47dc8b0e7f5f980ebd7071c469b

  • SHA256

    a1941786149857faebfd4f2731022d8af6aaa984b981bffd40bd123472b0beb4

  • SHA512

    792ccba986338f3a3d5475d615fa276a73c52eb483484ee2fda16a143f1100afdfd0dea2bb309bfba54202e07707df7bb025677f6477bf44ddb8f2282093f592

  • SSDEEP

    3145728:qJcuNt6i+X0MdTUPo+YFawtU4odz5zA436E7IkGl0BkChNw5+VTmms+B6Q8k:ScuN7+QYFjmPz5zAJ0wahNw5+VTTs+Bl

Score
10/10

Malware Config

Signatures

  • Zloader family
  • Unsigned PE 9 IoCs

    Checks for missing Authenticode signature.

Files

  • Battly-Launcher-Windows.exe
    .exe windows:4 windows x86 arch:x86

    b34f154ec913d2d2c435cbd644e91687


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/BgImage.dll
    .dll windows:4 windows x86 arch:x86

    32b0f5880a0efd258c6be2f7a14f4a9f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/splash.bmp
  • Battly Launcher.exe
    .exe windows:5 windows x64 arch:x64

    983b39e89e31e09b145fe6a6c7499ffb


    Headers

    Imports

    Exports

    Sections

  • LICENSE.electron.txt
  • LICENSES.chromium.html
  • chrome_100_percent.pak
  • chrome_200_percent.pak
  • d3dcompiler_47.dll
    .dll windows:10 windows x64 arch:x64

    8235041cfd6fffb926142c2c78013446


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ffmpeg.dll
    .dll windows:5 windows x64 arch:x64

    14338d2168d869b1b53d66354179e8c5


    Headers

    Imports

    Exports

    Sections

  • icudtl.dat
  • libEGL.dll
    .dll windows:5 windows x64 arch:x64

    592e6e55d4fe33d1bd84e3b3016fe3b2


    Headers

    Imports

    Exports

    Sections

  • libGLESv2.dll
    .dll windows:5 windows x64 arch:x64

    5585f5d849dffc51c08f9c2876f039ac


    Headers

    Imports

    Exports

    Sections

  • locales/af.pak
  • locales/am.pak
  • locales/ar.pak
  • locales/bg.pak
  • locales/bn.pak
  • locales/ca.pak
  • locales/cs.pak
  • locales/da.pak
  • locales/de.pak
  • locales/el.pak
  • locales/en-GB.pak
  • locales/en-US.pak
  • locales/es-419.pak
  • locales/es.pak
  • locales/et.pak
  • locales/fa.pak
  • locales/fi.pak
  • locales/fil.pak
  • locales/fr.pak
  • locales/gu.pak
  • locales/he.pak
  • locales/hi.pak
  • locales/hr.pak
  • locales/hu.pak
  • locales/id.pak
  • locales/it.pak
  • locales/ja.pak
  • locales/kn.pak
  • locales/ko.pak
  • locales/lt.pak
  • locales/lv.pak
  • locales/ml.pak
  • locales/mr.pak
  • locales/ms.pak
  • locales/nb.pak
  • locales/nl.pak
  • locales/pl.pak
  • locales/pt-BR.pak
  • locales/pt-PT.pak
  • locales/ro.pak
  • locales/ru.pak
  • locales/sk.pak
  • locales/sl.pak
  • locales/sr.pak
  • locales/sv.pak
  • locales/sw.pak
  • locales/ta.pak
  • locales/te.pak
  • locales/th.pak
  • locales/tr.pak
  • locales/uk.pak
  • locales/ur.pak
  • locales/vi.pak
  • locales/zh-CN.pak
  • locales/zh-TW.pak
  • resources.pak
  • resources/app/node_modules/adm-zip/LICENSE
  • resources/app/node_modules/adm-zip/adm-zip.js
    .js
  • resources/app/node_modules/adm-zip/headers/entryHeader.js
    .js
  • resources/app/node_modules/adm-zip/headers/index.js
  • resources/app/node_modules/adm-zip/headers/mainHeader.js
    .js
  • resources/app/node_modules/adm-zip/methods/deflater.js
    .js
  • resources/app/node_modules/adm-zip/methods/index.js
  • resources/app/node_modules/adm-zip/methods/inflater.js
    .js
  • resources/app/node_modules/adm-zip/methods/zipcrypto.js
    .js
  • resources/app/node_modules/adm-zip/package.json
  • resources/app/node_modules/adm-zip/util/constants.js
  • resources/app/node_modules/adm-zip/util/errors.js
  • resources/app/node_modules/adm-zip/util/fattr.js
    .js
  • resources/app/node_modules/adm-zip/util/fileSystem.js
    .js
  • resources/app/node_modules/adm-zip/util/index.js
  • resources/app/node_modules/adm-zip/util/utils.js
    .js
  • resources/app/node_modules/adm-zip/zipEntry.js
    .js
  • resources/app/node_modules/adm-zip/zipFile.js
    .js
  • resources/app/node_modules/ansi-styles/index.js
    .js
  • resources/app/node_modules/ansi-styles/license
  • resources/app/node_modules/ansi-styles/package.json
  • resources/app/node_modules/async/LICENSE
  • resources/app/node_modules/async/all.js
    .js
  • resources/app/node_modules/async/allLimit.js
    .js
  • resources/app/node_modules/async/allSeries.js
    .js
  • resources/app/node_modules/async/any.js
    .js
  • resources/app/node_modules/async/anyLimit.js
    .js
  • resources/app/node_modules/async/anySeries.js
    .js
  • resources/app/node_modules/async/apply.js
    .js
  • resources/app/node_modules/async/applyEach.js
    .js
  • resources/app/node_modules/async/applyEachSeries.js
    .js
  • resources/app/node_modules/async/asyncify.js
    .js
  • resources/app/node_modules/async/auto.js
    .js
  • resources/app/node_modules/async/autoInject.js
    .js
  • resources/app/node_modules/async/bower.json
  • resources/app/node_modules/async/cargo.js
    .js
  • resources/app/node_modules/async/cargoQueue.js
    .js
  • resources/app/node_modules/async/compose.js
    .js
  • resources/app/node_modules/async/concat.js
    .js
  • resources/app/node_modules/async/concatLimit.js
    .js
  • resources/app/node_modules/async/concatSeries.js
    .js
  • resources/app/node_modules/async/constant.js
    .js
  • resources/app/node_modules/async/detect.js
    .js
  • resources/app/node_modules/async/detectLimit.js
    .js
  • resources/app/node_modules/async/detectSeries.js
    .js
  • resources/app/node_modules/async/dir.js
    .js
  • resources/app/node_modules/async/dist/async.js
    .js
  • resources/app/node_modules/async/dist/async.min.js
    .js
  • resources/app/node_modules/async/dist/async.mjs
    .js
  • resources/app/node_modules/async/doDuring.js
    .js
  • resources/app/node_modules/async/doUntil.js
    .js
  • resources/app/node_modules/async/doWhilst.js
    .js
  • resources/app/node_modules/async/during.js
    .js
  • resources/app/node_modules/async/each.js
    .js
  • resources/app/node_modules/async/eachLimit.js
    .js
  • resources/app/node_modules/async/eachOf.js
    .js
  • resources/app/node_modules/async/eachOfLimit.js
    .js
  • resources/app/node_modules/async/eachOfSeries.js
    .js
  • resources/app/node_modules/async/eachSeries.js
    .js
  • resources/app/node_modules/async/ensureAsync.js
    .js
  • resources/app/node_modules/async/every.js
    .js
  • resources/app/node_modules/async/everyLimit.js
    .js
  • resources/app/node_modules/async/everySeries.js
    .js
  • resources/app/node_modules/async/filter.js
    .js
  • resources/app/node_modules/async/filterLimit.js
    .js
  • resources/app/node_modules/async/filterSeries.js
    .js
  • resources/app/node_modules/async/find.js
    .js
  • resources/app/node_modules/async/findLimit.js
    .js
  • resources/app/node_modules/async/findSeries.js
    .js
  • resources/app/node_modules/async/flatMap.js
    .js
  • resources/app/node_modules/async/flatMapLimit.js
    .js
  • resources/app/node_modules/async/flatMapSeries.js
    .js
  • resources/app/node_modules/async/foldl.js
    .js
  • resources/app/node_modules/async/foldr.js
    .js
  • resources/app/node_modules/async/forEach.js
    .js
  • resources/app/node_modules/async/forEachLimit.js
    .js
  • resources/app/node_modules/async/forEachOf.js
    .js
  • resources/app/node_modules/async/forEachOfLimit.js
    .js
  • resources/app/node_modules/async/forEachOfSeries.js
    .js
  • resources/app/node_modules/async/forEachSeries.js
    .js
  • resources/app/node_modules/async/forever.js
    .js
  • resources/app/node_modules/async/groupBy.js
    .js
  • resources/app/node_modules/async/groupByLimit.js
    .js
  • resources/app/node_modules/async/groupBySeries.js
    .js
  • resources/app/node_modules/async/index.js
    .js
  • resources/app/node_modules/async/inject.js
    .js
  • resources/app/node_modules/async/internal/DoublyLinkedList.js
    .js
  • resources/app/node_modules/async/internal/Heap.js
    .js
  • resources/app/node_modules/async/internal/applyEach.js
    .js
  • resources/app/node_modules/async/internal/asyncEachOfLimit.js
    .js
  • resources/app/node_modules/async/internal/awaitify.js
  • resources/app/node_modules/async/internal/breakLoop.js
  • resources/app/node_modules/async/internal/consoleFunc.js
    .js
  • resources/app/node_modules/async/internal/createTester.js
    .js
  • resources/app/node_modules/async/internal/eachOfLimit.js
    .js
  • resources/app/node_modules/async/internal/filter.js
    .js
  • resources/app/node_modules/async/internal/getIterator.js
    .js
  • resources/app/node_modules/async/internal/initialParams.js
    .js
  • resources/app/node_modules/async/internal/isArrayLike.js
  • resources/app/node_modules/async/internal/iterator.js
    .js
  • resources/app/node_modules/async/internal/map.js
    .js
  • resources/app/node_modules/async/internal/once.js
    .js
  • resources/app/node_modules/async/internal/onlyOnce.js
    .js
  • resources/app/node_modules/async/internal/parallel.js
    .js
  • resources/app/node_modules/async/internal/promiseCallback.js
    .js
  • resources/app/node_modules/async/internal/queue.js
    .js
  • resources/app/node_modules/async/internal/range.js
    .js
  • resources/app/node_modules/async/internal/reject.js
    .js
  • resources/app/node_modules/async/internal/setImmediate.js
    .js
  • resources/app/node_modules/async/internal/withoutIndex.js
  • resources/app/node_modules/async/internal/wrapAsync.js
    .js
  • resources/app/node_modules/async/log.js
    .js
  • resources/app/node_modules/async/map.js
    .js
  • resources/app/node_modules/async/mapLimit.js
    .js
  • resources/app/node_modules/async/mapSeries.js
    .js
  • resources/app/node_modules/async/mapValues.js
    .js
  • resources/app/node_modules/async/mapValuesLimit.js
    .js
  • resources/app/node_modules/async/mapValuesSeries.js
    .js
  • resources/app/node_modules/async/memoize.js
    .js
  • resources/app/node_modules/async/nextTick.js
    .js
  • resources/app/node_modules/async/package.json
  • resources/app/node_modules/async/parallel.js
    .js
  • resources/app/node_modules/async/parallelLimit.js
    .js
  • resources/app/node_modules/async/priorityQueue.js
    .js
  • resources/app/node_modules/async/queue.js
    .js
  • resources/app/node_modules/async/race.js
    .js
  • resources/app/node_modules/async/reduce.js
    .js
  • resources/app/node_modules/async/reduceRight.js
    .js
  • resources/app/node_modules/async/reflect.js
    .js
  • resources/app/node_modules/async/reflectAll.js
    .js
  • resources/app/node_modules/async/reject.js
    .js
  • resources/app/node_modules/async/rejectLimit.js
    .js
  • resources/app/node_modules/async/rejectSeries.js
    .js
  • resources/app/node_modules/async/retry.js
    .js
  • resources/app/node_modules/async/retryable.js
    .js
  • resources/app/node_modules/async/select.js
    .js
  • resources/app/node_modules/async/selectLimit.js
    .js
  • resources/app/node_modules/async/selectSeries.js
    .js
  • resources/app/node_modules/async/seq.js
    .js
  • resources/app/node_modules/async/series.js
    .js
  • resources/app/node_modules/async/setImmediate.js
    .js
  • resources/app/node_modules/async/some.js
    .js
  • resources/app/node_modules/async/someLimit.js
    .js
  • resources/app/node_modules/async/someSeries.js
    .js
  • resources/app/node_modules/async/sortBy.js
    .js
  • resources/app/node_modules/async/timeout.js
    .js
  • resources/app/node_modules/async/times.js
    .js
  • resources/app/node_modules/async/timesLimit.js
    .js
  • resources/app/node_modules/async/timesSeries.js
    .js
  • resources/app/node_modules/async/transform.js
    .js
  • resources/app/node_modules/async/tryEach.js
    .js
  • resources/app/node_modules/async/unmemoize.js
  • resources/app/node_modules/async/until.js
    .js
  • resources/app/node_modules/async/waterfall.js
    .js
  • resources/app/node_modules/async/whilst.js
    .js
  • resources/app/node_modules/async/wrapSync.js
    .js
  • resources/app/node_modules/balanced-match/LICENSE.md
  • resources/app/node_modules/balanced-match/index.js
    .js
  • resources/app/node_modules/balanced-match/package.json
  • resources/app/node_modules/brace-expansion/LICENSE
  • resources/app/node_modules/brace-expansion/index.js
    .js
  • resources/app/node_modules/brace-expansion/package.json
  • resources/app/node_modules/chalk/license
  • resources/app/node_modules/chalk/node_modules/has-flag/index.js
  • resources/app/node_modules/chalk/node_modules/has-flag/license
  • resources/app/node_modules/chalk/node_modules/has-flag/package.json
  • resources/app/node_modules/chalk/node_modules/supports-color/browser.js
  • resources/app/node_modules/chalk/node_modules/supports-color/index.js
    .js
  • resources/app/node_modules/chalk/node_modules/supports-color/license
  • resources/app/node_modules/chalk/node_modules/supports-color/package.json
  • resources/app/node_modules/chalk/package.json
  • resources/app/node_modules/chalk/source/index.js
    .js
  • resources/app/node_modules/chalk/source/templates.js
    .js
  • resources/app/node_modules/chalk/source/util.js
    .js
  • resources/app/node_modules/child_process/package.json
  • resources/app/node_modules/color-convert/LICENSE
  • resources/app/node_modules/color-convert/conversions.js
    .js
  • resources/app/node_modules/color-convert/index.js
    .js
  • resources/app/node_modules/color-convert/package.json
  • resources/app/node_modules/color-convert/route.js
    .js
  • resources/app/node_modules/color-name/LICENSE
  • resources/app/node_modules/color-name/index.js
  • resources/app/node_modules/color-name/package.json
  • resources/app/node_modules/concat-map/LICENSE
  • resources/app/node_modules/concat-map/README.markdown
    .js
  • resources/app/node_modules/concat-map/index.js
    .js
  • resources/app/node_modules/concat-map/package.json
  • resources/app/node_modules/ejs-electron/LICENSE
  • resources/app/node_modules/ejs-electron/index.js
    .js
  • resources/app/node_modules/ejs-electron/node_modules/mime/LICENSE
  • resources/app/node_modules/ejs-electron/node_modules/mime/Mime.js
    .js
  • resources/app/node_modules/ejs-electron/node_modules/mime/cli.js
    .js .sh linux polyglot
  • resources/app/node_modules/ejs-electron/node_modules/mime/index.js
    .js
  • resources/app/node_modules/ejs-electron/node_modules/mime/lite.js
    .js
  • resources/app/node_modules/ejs-electron/node_modules/mime/package.json
  • resources/app/node_modules/ejs-electron/node_modules/mime/types/other.js
  • resources/app/node_modules/ejs-electron/node_modules/mime/types/standard.js
  • resources/app/node_modules/ejs-electron/package.json
  • resources/app/node_modules/ejs/LICENSE
  • resources/app/node_modules/ejs/bin/cli.js
    .js .sh linux polyglot
  • resources/app/node_modules/ejs/ejs.js
    .js
  • resources/app/node_modules/ejs/ejs.min.js
    .js
  • resources/app/node_modules/ejs/jakefile.js
    .js
  • resources/app/node_modules/ejs/lib/ejs.js
    .js
  • resources/app/node_modules/ejs/lib/utils.js
    .js
  • resources/app/node_modules/ejs/package.json
  • resources/app/node_modules/ejs/usage.txt
  • resources/app/node_modules/filelist/index.js
    .js
  • resources/app/node_modules/filelist/jakefile.js
    .js
  • resources/app/node_modules/filelist/node_modules/brace-expansion/LICENSE
  • resources/app/node_modules/filelist/node_modules/brace-expansion/index.js
    .js
  • resources/app/node_modules/filelist/node_modules/brace-expansion/package.json
  • resources/app/node_modules/filelist/node_modules/minimatch/LICENSE
  • resources/app/node_modules/filelist/node_modules/minimatch/lib/path.js
  • resources/app/node_modules/filelist/node_modules/minimatch/minimatch.js
    .js
  • resources/app/node_modules/filelist/node_modules/minimatch/package.json
  • resources/app/node_modules/filelist/package.json
  • resources/app/node_modules/jake/Makefile
  • resources/app/node_modules/jake/bin/bash_completion.sh
    .sh linux
  • resources/app/node_modules/jake/bin/cli.js
    .js .sh linux polyglot
  • resources/app/node_modules/jake/jakefile.js
    .js
  • resources/app/node_modules/jake/lib/api.js
    .js
  • resources/app/node_modules/jake/lib/jake.js
    .js
  • resources/app/node_modules/jake/lib/loader.js
    .js
  • resources/app/node_modules/jake/lib/namespace.js
    .js
  • resources/app/node_modules/jake/lib/package_task.js
    .js
  • resources/app/node_modules/jake/lib/parseargs.js
    .js
  • resources/app/node_modules/jake/lib/program.js
    .js
  • resources/app/node_modules/jake/lib/publish_task.js
    .js
  • resources/app/node_modules/jake/lib/rule.js
    .js
  • resources/app/node_modules/jake/lib/task/directory_task.js
    .js
  • resources/app/node_modules/jake/lib/task/file_task.js
    .js
  • resources/app/node_modules/jake/lib/task/index.js
    .js
  • resources/app/node_modules/jake/lib/task/task.js
    .js
  • resources/app/node_modules/jake/lib/test_task.js
    .js
  • resources/app/node_modules/jake/lib/utils/file.js
    .js
  • resources/app/node_modules/jake/lib/utils/index.js
    .js
  • resources/app/node_modules/jake/lib/utils/logger.js
    .js
  • resources/app/node_modules/jake/package.json
  • resources/app/node_modules/jake/usage.txt
  • resources/app/node_modules/minimatch/LICENSE
  • resources/app/node_modules/minimatch/minimatch.js
    .js
  • resources/app/node_modules/minimatch/package.json
  • resources/app/node_modules/protocol/LICENSE.md
  • resources/app/node_modules/protocol/STYLE.md
  • resources/app/node_modules/protocol/benchmark/benchmark.js
    .js
  • resources/app/node_modules/protocol/benchmark/input.js
  • resources/app/node_modules/protocol/benchmark/protocol.js
  • resources/app/node_modules/protocol/lib/flatten.js
  • resources/app/node_modules/protocol/lib/flattenSchema.js
    .js
  • resources/app/node_modules/protocol/lib/generate.js
    .js
  • resources/app/node_modules/protocol/lib/index.js
  • resources/app/node_modules/protocol/lib/parse.js
    .js
  • resources/app/node_modules/protocol/lib/setup.js
    .js
  • resources/app/node_modules/protocol/lib/unflatten.js
    .js
  • resources/app/node_modules/protocol/package.json
  • resources/app/node_modules/protocol/protocol.js
  • resources/app/node_modules/windows-shortcuts/lib/shortcut/ReadMe.txt
  • resources/app/node_modules/windows-shortcuts/lib/shortcut/Shortcut.exe
    .exe windows:4 windows x86 arch:x86

    e265050412c5676a77d4b5b67d00ecf8


    Headers

    Imports

    Sections

  • resources/app/node_modules/windows-shortcuts/lib/windows-shortcuts.js
    .js
  • resources/app/node_modules/windows-shortcuts/package.json
  • resources/app/package.json
  • resources/app/src/ads.ejs
  • resources/app/src/assets/css/index.css
  • resources/app/src/assets/icon.icns
  • resources/app/src/assets/icon.ico
  • resources/app/src/assets/icon.png
    .png
  • resources/app/src/assets/images/background.png
    .png
  • resources/app/src/assets/images/flags/ar.png
    .png
  • resources/app/src/assets/images/flags/de.png
    .png
  • resources/app/src/assets/images/flags/en.png
    .png
  • resources/app/src/assets/images/flags/es.png
    .png
  • resources/app/src/assets/images/flags/fr.png
    .png
  • resources/app/src/assets/images/flags/it.png
    .png
  • resources/app/src/assets/images/flags/jp.png
    .png
  • resources/app/src/assets/images/flags/pt.png
    .png
  • resources/app/src/assets/images/flags/ru.png
    .png
  • resources/app/src/assets/images/opera_banner_de.png
    .png
  • resources/app/src/assets/images/opera_banner_en.png
    .png
  • resources/app/src/assets/images/opera_banner_es.png
    .png
  • resources/app/src/assets/images/opera_banner_fr.png
    .png
  • resources/app/src/assets/images/opera_banner_it.png
    .png
  • resources/app/src/assets/images/opera_banner_pt.png
    .png
  • resources/app/src/assets/images/splash.bmp
  • resources/app/src/assets/js/index-de.js
    .js
  • resources/app/src/assets/js/index-en.js
    .js
  • resources/app/src/assets/js/index-es.js
    .js
  • resources/app/src/assets/js/index-fr.js
    .js
  • resources/app/src/assets/js/index-it.js
    .js
  • resources/app/src/assets/js/index-pt.js
    .js
  • resources/app/src/assets/js/index.js
    .js
  • resources/app/src/assets/js/langs/de.js
  • resources/app/src/assets/js/langs/en.js
  • resources/app/src/assets/js/langs/es.js
  • resources/app/src/assets/js/langs/fr.js
  • resources/app/src/assets/js/langs/it.js
  • resources/app/src/assets/js/langs/pt.js
  • resources/app/src/assets/langs/de/eula.txt
  • resources/app/src/assets/langs/en/eula.txt
  • resources/app/src/assets/langs/es/eula.txt
  • resources/app/src/assets/langs/fr/eula.txt
  • resources/app/src/assets/langs/it/eula.txt
  • resources/app/src/assets/langs/pt/eula.txt
  • resources/app/src/eula.ejs
  • resources/app/src/footer.ejs
  • resources/app/src/header.ejs
    .html
  • resources/app/src/index.ejs
    .html
  • resources/app/src/index.js
    .js
  • resources/app/src/install-options.ejs
  • resources/app/src/language.ejs
  • resources/app/src/logs.ejs
  • resources/app/src/path.ejs
  • snapshot_blob.bin
  • v8_context_snapshot.bin
  • vk_swiftshader.dll
    .dll windows:5 windows x64 arch:x64

    c6d5499631d983c25f3393a4b4b13399


    Headers

    Imports

    Exports

    Sections

  • vk_swiftshader_icd.json
  • vulkan-1.dll
    .dll windows:5 windows x64 arch:x64

    49ed29c3ff417b26c7cd92ecc9b7dcb3


    Headers

    Imports

    Exports

    Sections