Launcher.exe

First submission 2024-09-02 23:35:01 Last sumbission 2024-09-02 23:37:01

File details

File type: PE32+ executable (console) x86-64, for MS Windows
Mime type: application/x-dosexec
File size: 22.0 KB (22528 bytes)
Compile time: 2024-05-08 10:26:56
MD5: 8e9d1161d84aa416108c23f8d457a633
SHA1: 745061884bfe93c6b5a74a872a4deccad33dcea2
SHA256: b9b78b3ca1860242e9cd9294e5e2d63a637e0b086b1e30dfad31c1080ed14ed6
Import Hash : 2c2c290b31d72b5de180c9426897666e
Sections 6 .text .rdata .data .pdata .rsrc .reloc
Directories 4 import resource debug relocation

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 56/79 VT report date: 2024-09-02 23:02:24
Malware Type 1 trojan
Threat Type 3 shellcoderunner zusy dhhal

URLs, FQDN and IP indicators 2

URL Host (FQDN/IP) Date Added
hXXps://downloadsparrow.com/cl/hs/Launcher.exe VirusTotal Report downloadsparrow.com VirusTotal Report 2024-09-02 23:37:03
hXXp://downloadsparrow.com/cl/hs/Launcher.exe VirusTotal Report downloadsparrow.com VirusTotal Report 2024-09-02 23:35:01

PE Sections 0 suspicious

Name VAddress VSize Size SHA1 MD5 Suspicious
.text 0x1000 0x28ee 10752 58e4c0ef5cabee2743657c2b5a07a8ebb7c25d17 3ae42c83f470393dd2a099a53d0381a8
.rdata 0x4000 0x1f74 8192 3d6df167350d0e6310ecff9d52d9345d574e158c 74778b166f8697b0b1298b02adccbd90
.data 0x6000 0x718 512 545cb838a3e195f55b77faeffaf6c5893e109129 c088ed82a46101351cb358f6077ee94e
.pdata 0x7000 0x2d0 1024 ed22f7e6c7ab0200155caaa80b00d3c3532a0afd c5745a5965d38f87b2285563bd96d993
.rsrc 0x8000 0x1e8 512 3610a3599548b540ce1e7415ab3d1d9e494bfafc aab75a50651b831a187cc100e6f72a34
.reloc 0x9000 0x58 512 ca762f45fda1ba333144f8306d22d6dabd186a9c 4e3e3cc825d221fff1632b8a663a4d93

PE Resources 1

Name Language Sublanguage Offset Size Data
RT_MANIFEST LANG_ENGLISH SUBLANG_ENGLISH_US 0x8060 392

Packers detected 1

Microsoft Visual C++ 8.0 (DLL)

Anti debug functions 6

FindWindowA
GetLastError
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
UnhandledExceptionFilter

Strings analysis - File found

Library
COMDLG32.dll
USER32.dll
api-ms-win-crt-runtime-l1-1-0.dll
Bypass.dll
api-ms-win-crt-math-l1-1-0.dll
Cheat.dll
VCRUNTIME140_1.dll
msvcp140.dll
KERNEL32.dll
api-ms-win-crt-locale-l1-1-0.dll
vcruntime140.dll
api-ms-win-crt-stdio-l1-1-0.dll
api-ms-win-crt-heap-l1-1-0.dll
\GameAssembly.dll
SHLWAPI.dll
api-ms-win-crt-string-l1-1-0.dll

Import functions

Name Latest seen MD5
Launcher.exe 2024-09-03 00:19:01 1788ecdad15cd02d42475133faa38cce