Overview

overview

3

Static

static

3

Launcher-3...fig.js

windows7-x64

3

Launcher-3...fig.js

windows10-2004-x64

3

Launcher-3...log.js

windows7-x64

3

Launcher-3...log.js

windows10-2004-x64

3

Launcher-3...e.html

windows7-x64

3

Launcher-3...e.html

windows10-2004-x64

3

Launcher-3...bug.js

windows7-x64

3

Launcher-3...bug.js

windows10-2004-x64

3

Launcher-3...ing.js

windows7-x64

3

Launcher-3...ing.js

windows10-2004-x64

3

Launcher-3...ngs.js

windows7-x64

3

Launcher-3...ngs.js

windows10-2004-x64

3

Launcher-3...ate.js

windows7-x64

3

Launcher-3...ate.js

windows10-2004-x64

3

Launcher-3...api.js

windows7-x64

3

Launcher-3...api.js

windows10-2004-x64

3

Launcher-3...nit.js

windows7-x64

3

Launcher-3...nit.js

windows10-2004-x64

3

Launcher-3...32.dll

windows7-x64

3

Launcher-3...32.dll

windows10-2004-x64

3

Launcher-3...64.dll

windows7-x64

1

Launcher-3...64.dll

windows10-2004-x64

1

Launcher-3...32.exe

windows7-x64

3

Launcher-3...32.exe

windows10-2004-x64

3

Launcher-3...64.exe

windows7-x64

1

Launcher-3...64.exe

windows10-2004-x64

1

Launcher-3...ord.js

windows7-x64

3

Launcher-3...ord.js

windows10-2004-x64

3

Launcher-3...er.jar

windows7-x64

1

Launcher-3...er.jar

windows10-2004-x64

1

Launcher-3...radlew

ubuntu-18.04-amd64

1

Launcher-3...radlew

debian-9-armhf

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12-09-2024 18:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Launcher-3.17.0/Launcher/src/main/resources/Avanguard64.dll

  • Size

    506KB

  • MD5

    6a04cb658c87cd8a7123dc49d74756dc

  • SHA1

    a60bf7d3ef416c950afc178870c6d3e62384c1b6

  • SHA256

    4aa1bbe7f130c4532381d6449201093bc9c96541c5d1f67d29f3980d7148c4e2

  • SHA512

    47b631f9d2fbd91b73f6901465b3e4706fffe7f8e0b50e6708c0732584ff6af5fa8d92ded4fe58b306e498693362d78d0957a386a7cc97670a4429a3c781e593

  • SSDEEP

    6144:xDJ4Nf4sDpSnaRDtybC9tRW+8P5iovAHD8jKJjLV2idpwIDcgE1VVB1ooh5V6JsO:xDJ+4s1R5sC93q1YMG+VXooXdv2MS

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\Launcher-3.17.0\Launcher\src\main\resources\Avanguard64.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2788
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -u -p 2788 -s 80
      2⤵
        PID:2840

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2788-0-0x00000000003A0000-0x00000000003A1000-memory.dmp

      Filesize

      4KB

      Download