LAUNCHER[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

LAUNCHER.exe
Size

31.8MB
MD5

a2b6383868a2329c353e52082b5e826e
SHA1

dc646b39b777b2807f24d49bf6c8fa5fcecb41f6
SHA256

6e150094c4b4bcb3f1496a245a6fc810ffa59a0d98f68aff10691171ef2105a0
SHA512

94537aa091bbcd637d75b703f6d5b16f0a7b642d2b62f70cd4ce70ba3f52a137f8221df1367afcad9163d9bb635366e18c6eccea245c01364955cb5fcf649d8f
SSDEEP

786432:CKABTRq79p0hLGfw2v4OphIlUctYLupI19:CKWO0LGrvlph+8K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
LAUNCHER.exe

Files

LAUNCHER.exe
.exe windows:6 windows x64 arch:x64

b49baaf1338fde00bab3881dea207986

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

CloseHandle

Sections

.std
Size: - Virtual size: 266KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.std
Size: - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.std
Size: - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.std
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.std
Size: - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.std
Size: - Virtual size: 200B

.std
Size: - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.std
Size: - Virtual size: 19.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.std
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.std
Size: 31.7MB - Virtual size: 31.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.std
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ