Overview

overview

6

Static

static

3

Launcher.bat

windows7-x64

6

Launcher.bat

windows10-2004-x64

6

compiler.exe

windows7-x64

1

compiler.exe

windows10-2004-x64

1

lua51.dll

windows7-x64

1

lua51.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    93s
  • max time network
    100s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/07/2024, 09:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Launcher.bat

  • Size

    33B

  • MD5

    6287e562f249e3713e12136a1ffbd8fa

  • SHA1

    5778c96d74c077905c2b30741eba2b2c070d8f0f

  • SHA256

    d76b5184c7fe293578aec681b64d1a72eec44e28342655f1bf2dcf120f6b7708

  • SHA512

    9ca4d0ae1146beba8fb192346f31c13b5ec92bf1c6b49daafd7fac3b51e2a6f87bf50d95da6eab72a51dc0aa76d56fd9f2026214cb0fb45e3192a9067bf47212

Score
6/10

Malware Config

Signatures

  • Looks up external IP address via web service 1 IoCs

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\Launcher.bat"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:372
    • C:\Users\Admin\AppData\Local\Temp\compiler.exe
      compiler.exe config
      2⤵
        PID:2148

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2148-2-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-1-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-0-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-56-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-63-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-62-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-61-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-60-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-59-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-58-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-57-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-55-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-54-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-53-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-51-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-50-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-49-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-48-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-47-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-46-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-45-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-44-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-43-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-42-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-41-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-40-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-39-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-38-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-37-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-34-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-32-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-31-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-30-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-29-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-28-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-27-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-86-0x0000000000BC0000-0x0000000000BC1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2148-85-0x0000000000780000-0x0000000000781000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2148-24-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-23-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-22-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-21-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-20-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-19-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-18-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-16-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-15-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-14-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-13-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-12-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-11-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-10-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-9-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-8-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-7-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-6-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-5-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-36-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-52-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-35-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-33-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-25-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-26-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-17-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-4-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2148-3-0x000000007FAC0000-0x000000007FAD0000-memory.dmp

      Filesize

      64KB

      Download