Overview

overview

6

Static

static

3

Launcher.bat

windows11-21h2-x64

6

compiler.exe

windows11-21h2-x64

3

lua51.dll

windows11-21h2-x64

3

Analysis

  • max time kernel
    5s
  • max time network
    6s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    14-10-2024 17:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Launcher.bat

  • Size

    4KB

  • MD5

    00aa88a3830ec93763303d15a1aaf745

  • SHA1

    82d53af33aca86996ca85a2f8fb412bb5c19f9e6

  • SHA256

    68dab9c38f8b3dcae2b4d327bbb4e4aa3ce4375efa9f7e92073d868334ee1daa

  • SHA512

    31f329f54b3b5b2f9bbd0955f0dabcb2d7a50ebd9935af89e036455a063bf0d68305aee03ef51687ff6389e065fab477ac18edb60d19aec7692be29381b796da

  • SSDEEP

    3:LjdIV9ZbLRJFFDa+ZFBW6:FIRFFV

Score
6/10
discovery

Malware Config

Signatures

  • Looks up external IP address via web service 1 IoCs

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\Launcher.bat"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:5048
    • C:\Users\Admin\AppData\Local\Temp\compiler.exe
      compiler.exe conf.txt
      2⤵
      • System Location Discovery: System Language Discovery
      PID:1948

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1948-0-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-47-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-46-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-64-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-62-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-78-0x0000000000680000-0x0000000000681000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1948-77-0x0000000000680000-0x0000000000681000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1948-60-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-61-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-59-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-58-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-57-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-56-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-55-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-54-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-53-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-52-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-51-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-50-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-49-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-48-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-45-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-44-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-41-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-40-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-39-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-38-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-37-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-36-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-35-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-34-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-33-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-32-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-31-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-30-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-29-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-27-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-26-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-80-0x0000000000C70000-0x0000000000C71000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1948-25-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-24-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-23-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-22-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-21-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-20-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-19-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-18-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-17-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-16-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-15-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-14-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-13-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-12-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-11-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-10-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-9-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-8-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-7-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-4-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-3-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-1-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-43-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-84-0x0000000000C70000-0x0000000000C71000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1948-42-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-28-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-6-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-5-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1948-2-0x000000007F2C0000-0x000000007F2D0000-memory.dmp

    Filesize

    64KB

    Download