Overview

overview

9

Static

static

3

LAUNCHER(1).exe

windows7-x64

LAUNCHER(1).exe

windows10-2004-x64

5

Analysis

  • max time kernel
    149s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06-09-2024 19:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LAUNCHER(1).exe

  • Size

    26.5MB

  • MD5

    2b9574243ce737564c4d808a471b33b8

  • SHA1

    c6a7dbe1bc73ff72c137cdc896c746e77df2ce80

  • SHA256

    225c8a3cab0e7b7cf52596a822ecaf75f7826ff89f0e58df190118b988699e8a

  • SHA512

    5c7aa363baa56d99a79a80f29c5b1d79c5f3ebf359d33e1770d590fa2ad571f32298e4159c02254db3596ab3c82b03dc02a772d41764391d3caba8e738bf60d3

  • SSDEEP

    786432:bHGtKH1jlC42OaZSKNBWkGoCsoM5JX8e:bHGSJ34ZBWkIsoMHX

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\LAUNCHER(1).exe
    "C:\Users\Admin\AppData\Local\Temp\LAUNCHER(1).exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious behavior: EnumeratesProcesses
    PID:2844
  • C:\Windows\System32\rundll32.exe
    C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
    1⤵
      PID:2600

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2844-0-0x0000000140369000-0x00000001413C1000-memory.dmp

      Filesize

      16.3MB

      Download

    • memory/2844-1-0x00007FFA68410000-0x00007FFA68412000-memory.dmp

      Filesize

      8KB

      Download

    • memory/2844-2-0x00007FFA68420000-0x00007FFA68422000-memory.dmp

      Filesize

      8KB

      Download

    • memory/2844-3-0x0000000140000000-0x0000000142E39000-memory.dmp

      Filesize

      46.2MB

      Download

    • memory/2844-4-0x0000000140000000-0x0000000142E39000-memory.dmp

      Filesize

      46.2MB

      Download

    • memory/2844-7-0x0000000140369000-0x00000001413C1000-memory.dmp

      Filesize

      16.3MB

      Download

    • memory/2844-8-0x0000000140000000-0x0000000142E39000-memory.dmp

      Filesize

      46.2MB

      Download

    • memory/2844-9-0x0000000140000000-0x0000000142E39000-memory.dmp

      Filesize

      46.2MB

      Download

    • memory/2844-10-0x0000000140369000-0x00000001413C1000-memory.dmp

      Filesize

      16.3MB

      Download

    • memory/2844-11-0x0000000140000000-0x0000000142E39000-memory.dmp

      Filesize

      46.2MB

      Download

    • memory/2844-12-0x0000000140000000-0x0000000142E39000-memory.dmp

      Filesize

      46.2MB

      Download