General

  • Target

    Battly-Launcher-Windows.exe

  • Size

    112.1MB

  • Sample

    240804-z2344szgrh

  • MD5

    03696da629e834c395f699847326448a

  • SHA1

    3529afa76451ed5beeeb0bb4a31f7cc8bc463aa6

  • SHA256

    9d8763451c2bd900dbf10e3cdb16132ec706b8e13dbd563aa15835d5b2d8cc4d

  • SHA512

    fca0ef778b3ab13cf01e3d39d4c7eb4a587f600ed8d5ab10a03a3061178609dc13a75f6cc736ec27ed9f40a2a554030217cc91a8bf982d42f460585102f1969b

  • SSDEEP

    3145728:SJcuNt6i+X0MdTUPo+YFawtU4odzp7emMT:qcuN7+QYFjmPztemE

Score
10/10

Malware Config

Targets

    • Target

      Battly-Launcher-Windows.exe

    • Size

      112.1MB

    • MD5

      03696da629e834c395f699847326448a

    • SHA1

      3529afa76451ed5beeeb0bb4a31f7cc8bc463aa6

    • SHA256

      9d8763451c2bd900dbf10e3cdb16132ec706b8e13dbd563aa15835d5b2d8cc4d

    • SHA512

      fca0ef778b3ab13cf01e3d39d4c7eb4a587f600ed8d5ab10a03a3061178609dc13a75f6cc736ec27ed9f40a2a554030217cc91a8bf982d42f460585102f1969b

    • SSDEEP

      3145728:SJcuNt6i+X0MdTUPo+YFawtU4odzp7emMT:qcuN7+QYFjmPztemE

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Target

      resources/app/node_modules/color-name/package.json

    • Size

      369B

    • MD5

      328719e73b38d4d0bdd56b2cb88a5feb

    • SHA1

      2cc0d94a27a8161ea76895b13ec73c5b2a2c97da

    • SHA256

      fcae3844baef45d10ea5b3d36962c4bb517f6c0c0502da5dab6debc55c3e9359

    • SHA512

      1f80c6800d4ab5da0497702c19e3d886c14da288869620050d7e81c31dcec16c8b74b9773cc94193076ceec11bd4d5a45bfcab8b3ffa692fedc29a8357a0782f

    Score
    3/10
    • Target

      resources/app/node_modules/protocol/package.json

    • Size

      648B

    • MD5

      22f168d990e82240c04af1d5385ab144

    • SHA1

      54c6009307e41a1cd39f8bcb9544d6831c310198

    • SHA256

      1a1a2c784eb2553bbc8e55706ab5df3f07a35b36aa3c301677ce8393a0be7a0c

    • SHA512

      08d547b21f28ce8b175768e4e4a1904747331d02bc7689c6f27b4caebe7be39802b82331803f3d9b9784459a2267af917d9ca7fbb1eeca5078d667377ddb6d53

    Score
    3/10
    • Target

      resources/app/node_modules/windows-shortcuts/lib/shortcut/ReadMe.txt

    • Size

      2KB

    • MD5

      7dd3bdf130a37bcd5e7de4cf642150e1

    • SHA1

      9cbf17699f354ba7213202e5510c770de077ba49

    • SHA256

      34ccbdfcbb0b54ae4db54d50d12c0b923ab1b8f485ff93c9c2f64fe3fb574f12

    • SHA512

      35761d3536b6441dab32e6394880915239a862e2e98c60e88a261887438bc308652776eb507775cf93d4b45050ac1cde2e5ccf2088f494ea2aace88f3a48db1a

    Score
    1/10
    • Target

      resources/app/node_modules/windows-shortcuts/package.json

    • Size

      577B

    • MD5

      d35a29eb509d52f43ad8d7d7e57557ca

    • SHA1

      73e4a065cfca688e7f6813af77bbd5ddb63f7148

    • SHA256

      540b79de6a1c3583c8255b304849701744a9a640fa45f10b64ec983be7bd408a

    • SHA512

      b722f588a5e49eb787d0f9ac266f50baccf5fd3bd9f3023dc70833fb68f84605571fbaf8c459bfde902c98f4572132fb8590ee03548ed6fd5f53de5d30d5a90c

    Score
    3/10
    • Target

      resources/app/package.json

    • Size

      530B

    • MD5

      e102ea0d9f0e36be31e25b787c35ca2c

    • SHA1

      022ea237f37e95570872a64ba6af1e2f63cb0dab

    • SHA256

      9f66eafe35c475aaba1157c877406f448273c6e4811a1ef2fce10aa0d5eee706

    • SHA512

      426e0af432f24562e548bf53ea972636c494f0c5b840b9e6affbc40f32fdb9de3cde3c4fd83d9a221eae9832a42631b2b178a3d46f1b2a56d1a82978fe32fc51

    Score
    3/10
    • Target

      resources/app/src/ads.ejs

    • Size

      1KB

    • MD5

      d7f2205fb3ea4fc29629fd16cc13e42e

    • SHA1

      ac4addc19bdf3f56a2b2aa0b8e5a2b2d459b209f

    • SHA256

      828df948e8dd1e0fc2a88511fd1f59568a97fc2c3626152e574e5f31c89ff5e8

    • SHA512

      6ff7cbfb366642d6b1ce5ce15f335b27a8f500341bb059f6037d50409c071d9ef8a735c447a876bd986f4902e377a773b9e41e09d7d433b8365a5049a689bf3a

    Score
    3/10
    • Target

      resources/app/src/assets/css/index.css

    • Size

      20KB

    • MD5

      9338a403220d934986f5dc738419174d

    • SHA1

      33d0a93608f28900b4771b49d88259b2f70350e7

    • SHA256

      2f281d5eb03f52a46514089fd0b0af408f02613a8fcef8d506dc01f590651d7c

    • SHA512

      cd92d15c6ee9d6d9ed78fa073406462d5f3b33cc9c198a693fa51f53889ba9f5ef2a498ea3f033ef7cad73b1248e4bad9afcad8246f5b98dcde3435399dca508

    • SSDEEP

      192:zIPPOBM/UfNLh38L6wLLd949+cZaxYPrunqm0LJ4nqBDmwsNSflfBWG+ngBmb:UFUf7ML6hPrDz+KfBWtg0

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Target

      resources/app/src/assets/icon.icns

    • Size

      52KB

    • MD5

      a9ac947c7d14b1827647cd7232df4994

    • SHA1

      4d914955e8d9dcc566e56d912dc4227e5048bf4e

    • SHA256

      3163ed50c1b8301bb87cbbe983d87e072aaf1fa4b9c2e5917a9df858033059a9

    • SHA512

      49c664e58050a47efce4da174658bfa94efb434d93a896edc9658a0b594c818a0a98254c197e241ee9c235d0707baa7efa4f7b3f571f10c48c4bd6c2facd538f

    • SSDEEP

      1536:wu8c5oFMRj2A+zRBWQ7bxIqcY0652Ke1YfR93rkQ:wuJoFMFGyQJIqcY0O2KWYv7kQ

    Score
    3/10
    • Target

      resources/app/src/assets/icon.ico

    • Size

      11KB

    • MD5

      372b8e595552272d8980d7ce68a22a45

    • SHA1

      3458abecc3172f86c0a42f889402a700964a7bdc

    • SHA256

      9a6b51f26c9efb993a02f67582477d9b524b029af5d6b1bea046840012dc110e

    • SHA512

      bb712405ea0c0ec66add82abd04ca8f32e07bea7e4bbdcb2bce53a16caf8d9bf2a514ec8e647739e739f995931fc6d04d155e8b2f381fb93765024a4aebc1fa4

    • SSDEEP

      192:5oE/UpLYcasZP5WUZ0iClTa8VhjO/wulukJ4M8JQTtDdtEDQ76nE/Vcb8VM8eQvP:j40cNZP5rqiClfhQwuUek6tDEsiockfP

    Score
    3/10
    • Target

      resources/app/src/assets/icon.png

    • Size

      19KB

    • MD5

      789fc1c35197db8ea9870e1c66f847f0

    • SHA1

      62638e9d9631714e7eb8f83ad3beafcb4f6b2e53

    • SHA256

      9f3d301cf823e1d227b8521a83ca50de4719eecad1f31ec17e70c159ce70a19d

    • SHA512

      1e1a0d4c8b544b06edecfadfd36c2614671ccf77d80e88822adcd53bfa305f2ab1b6a532728c867200d781f1519d940fd45bc8f7f4a645c48b4e9e3c746e0890

    • SSDEEP

      384:rlJPiprOzKXyyu7AQ5KwmrCLAhWfylRZrq3+lhxp+3IM2:pJPi9OIA5KxrCLAhWfyFq3Gxp+YF

    Score
    3/10
    • Target

      resources/app/src/assets/images/background.png

    • Size

      713KB

    • MD5

      54d3046d693ef7dc0e06a32ff629e7a1

    • SHA1

      1d14c54f2db92c94e467dc3b3f6480fe737ed830

    • SHA256

      62a7ec1cb750aa28bcfdc93cebf1521f8cdc352992938652527aacb79618e57c

    • SHA512

      b4e123d3bf4b21bdb1c73ab9374bad0e1090e5cfd0b758bebfd907d4f3736c9f4e87e73e693a85eed66bd0e1eee85fbcf1a152eeb83ea6f317e85022d67fca3d

    • SSDEEP

      12288:U/xhayudk53PLRv6C4UxLj5UE8VYJXgf/FVxenbd+pf5TjXVmhgOAX7KOJreROM0:U7fudk5/dx4Ufhw33xg0fYgTrKOuOMHU

    Score
    3/10
    • Target

      resources/app/src/assets/images/flags/ar.png

    • Size

      761B

    • MD5

      4259ceccb7747b79119f669f4e096e10

    • SHA1

      d17d81f676dfa2dd8c0f6dd91a29a05306b23a69

    • SHA256

      761cba50b4fbbc720f4a594947834239bb0556452a53ca65dad3b89a60790738

    • SHA512

      e6583326099e2b70b3a4b61c7e604f17227615a9062f9948aa291e04d5c1c78b99d136a537f4d65c5a28e75f4c9f960f0b8ef10e51975b2db095775ef9e69ee9

    Score
    3/10
    • Target

      resources/app/src/assets/images/flags/de.png

    • Size

      274B

    • MD5

      0c730750c8a99bc30cf20b83d235aea6

    • SHA1

      8ea6cd3bbdaae43607b4882560c4e04ef8eeaf8d

    • SHA256

      b9d2aced61236662459e3acaaeaf44ce7af28405847c9a54d42fa4ae344f045f

    • SHA512

      2fc3251378520052892b529b8c3638cbc3dd9c4ac471dc20382930c103c886826f05969400d7d1054b066cc81d00813ba86532b20be646aa8910efec9dfc6c23

    Score
    3/10
    • Target

      resources/app/src/assets/images/flags/en.png

    • Size

      310B

    • MD5

      c2de03c4d117d87763d4e1e5e28482db

    • SHA1

      bfbecbfba4c5a871894c6784da913fa495a2aa3b

    • SHA256

      e423db68a40835ac299155e365864461e37115a96f996091d5af026103d753e2

    • SHA512

      628f47a91c2605a66dda06430f26d8685384136c0d04bc3146dd033462ef7def71c7d9ddd43cf3d07e892a400d089faed938a91317a94fce4febfd01183e1301

    Score
    3/10
    • Target

      resources/app/src/assets/images/flags/es.png

    • Size

      370B

    • MD5

      ff0df90a5a69c16ef24fab173a89ee4f

    • SHA1

      02b14de1912f54b2b0630346c2cfe75a8da6d5b9

    • SHA256

      c79f2cdfee1e6666b8180b7ee33d1f06bcffb113e602e8ec47b668d4db4f18d9

    • SHA512

      4387449064aada45fba5e933304c5f931c29187acc025d291f1a758c6b2453085faa42693b2395fb08829b62187577988149514e133c2d4c58d6a2ed851f7ccc

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks

static1

zloader
Score
10/10

behavioral1

discovery
Score
7/10

behavioral2

discovery
Score
7/10

behavioral3

discovery
Score
3/10

behavioral4

Score
3/10

behavioral5

discovery
Score
3/10

behavioral6

Score
3/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

discovery
Score
3/10

behavioral10

Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

Score
3/10

behavioral15

Score
3/10

behavioral16

Score
7/10

behavioral17

discovery
Score
3/10

behavioral18

Score
3/10

behavioral19

Score
3/10

behavioral20

Score
3/10

behavioral21

Score
3/10

behavioral22

Score
3/10

behavioral23

Score
3/10

behavioral24

Score
3/10

behavioral25

Score
3/10

behavioral26

Score
3/10

behavioral27

Score
3/10

behavioral28

Score
3/10

behavioral29

Score
3/10

behavioral30

Score
3/10

behavioral31

Score
3/10

behavioral32

Score
3/10