Overview

overview

10

Static

static

3

RC7.zip

windows7-x64

1

RC7.zip

windows10-2004-x64

1

AlphaBlendTextBox.dll

windows7-x64

1

AlphaBlendTextBox.dll

windows10-2004-x64

1

Bunifu_UI_v1.5.3.dll

windows7-x64

1

Bunifu_UI_v1.5.3.dll

windows10-2004-x64

1

HWID.exe

windows7-x64

10

HWID.exe

windows10-2004-x64

10

RC7/AlphaB...ox.dll

windows7-x64

1

RC7/AlphaB...ox.dll

windows10-2004-x64

1

RC7/Bunifu....3.dll

windows7-x64

1

RC7/Bunifu....3.dll

windows10-2004-x64

1

RC7/Monaco.html

windows7-x64

1

RC7/Monaco.html

windows10-2004-x64

1

RC7/MonacoEditor.html

windows7-x64

1

RC7/MonacoEditor.html

windows10-2004-x64

1

RC7/RC7.exe

windows7-x64

10

RC7/RC7.exe

windows10-2004-x64

10

RC7/RC7_UI.exe

windows7-x64

1

RC7/RC7_UI.exe

windows10-2004-x64

1

RC7/Themes...me.zip

windows7-x64

1

RC7/Themes...me.zip

windows10-2004-x64

1

RC7/Themes...me.zip

windows7-x64

1

RC7/Themes...me.zip

windows10-2004-x64

1

RC7/Themes...me.zip

windows7-x64

1

RC7/Themes...me.zip

windows10-2004-x64

1

RC7/Themes...me.zip

windows7-x64

1

RC7/Themes...me.zip

windows10-2004-x64

1

RC7/Themes...me.zip

windows7-x64

1

RC7/Themes...me.zip

windows10-2004-x64

1

RC7/Themes...me.zip

windows7-x64

1

RC7/Themes...me.zip

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07-12-2023 20:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RC7/MonacoEditor.html

  • Size

    6KB

  • MD5

    cff4feef176cef910036d01c653d9287

  • SHA1

    2ec40c7ea8d85a126c39f294d82cd128217c0b6a

  • SHA256

    3e06c186e632d01ebc2ef38fb0c082f26e14132697afe8750173f4a09569147a

  • SHA512

    f1d5707a947d1172cd8b06b8dec8cffd8ae88486c4a7a685ef88b8c619fee84efcf0cf5ec193c1f5b3dfcb3bf5aa74cb5ce89003d092d7414aadf2c2a6e5587d

  • SSDEEP

    192:Q3+OKFLvkJj7ppk32eynKZyt7TJPAqkvKU3LI+QrzZws:Y+OKFK3pi32eynAhs

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\RC7\MonacoEditor.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2136
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2136 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2628

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    208550338749b39dca2c2d4af5d55ec7

    SHA1

    f505c9e304e650861396a762549242b8de5a3e3c

    SHA256

    88cddf3e87dc6886ad124ee6d014673430299edcfd3f38656e5cb2f702745670

    SHA512

    45aca800e8d00b4034790674e7da2e3736b56fc4bd974f248b6b2be92c36bb609abd2312d17ca03bfb777260db52d19c6d32ee71cf050a6d9245d011b99f1041

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e9372109c389a5cd9813120c7b3de50

    SHA1

    2c8bffaaf5c8002ec8d68c5c35516267752044d1

    SHA256

    d48e9d06e921fd4e4460064478d02a91ee1a9eccda8c498e40e515b4d1486523

    SHA512

    71953f0250c00373880a48319fdf97236b6eee65b220186d85fda5ae7ca3af71580435513c0a4bf92c1294ef6f80a469a5081c80bb82ac6cec101ed6f4a9be3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a7699ce9dd5125033cd2a9ace403a07a

    SHA1

    6d6812cca0e4fa82662538b370d24bdfc520c20e

    SHA256

    18d218ad660fbe5d1505b34f75335e2fc32929be3c7d8131f7a80997f66d5409

    SHA512

    72d5aafce37233f804996a6bb4e7fd9722a8b32349d7f7d31532744e71cb2fa0357979cc75cb0ba6c7780165de467b63b81f1893e5d379be6930911f36006a6d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8098e2223063af9241f345360dc4fcba

    SHA1

    29e185e6d6e92e32bc20ec18fbbccb5f6179b82d

    SHA256

    c04c81e44f5f02337cf51c497a5ce0f9fb90f46804aa8dc5c26a876f77388868

    SHA512

    4a8ab9ee5ab397614e392f61fa19b446f6f80ef3c8e19f48995b5b4b9e358697251d46194feaec7369f74313ac00c38a736623354712fba9ff82590700f7e164

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bb0a3243f05e0162f87f043c69a8ba52

    SHA1

    c75bd36cbc205e7dee2eeee7eb644ac72e5aeae4

    SHA256

    4c13ff8a321b19dd8ecbe6e5656477380bfbafadf13ff40a4c3f81f125942efe

    SHA512

    82896755d78e8e192b5722e455d45d39d8904d32c034515d484e21028ed78cab5d4f205dc20bc69027a037aff0b3aa14fd8080c4bddbb4c7239c76f88182066f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9d1d67d538a8fe4ca7aca191e3acd09

    SHA1

    0c0cc8637178159a43b4abb3caf10cbfbdf9a108

    SHA256

    0b0c448872df3969ec0c8519467ee495a2a0799a7607397514e2550e7365e2fc

    SHA512

    384bdf6c3bd99b90ea0c57f1d659516d360c368210febf559d159f935de6e65a4f570343a93b7122b4363ba17aac6db7a8c396888b7f5cb73c3b5bfdad0236ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fee0e2297fc9e644e6216fcec2ea883a

    SHA1

    b9de49b80daf8ed32ed5cde34bc9af705179b857

    SHA256

    a4eacf3eccb26b229d89e3ec00228d4a86825001fb24e414d571685adfc916d0

    SHA512

    fcdbed462e8afd497cf176a7eec12ee5976afb97176f9e513cc8eceda180f47f32b53367a1bda85a218772968eb8e012eb9f85cb1c21259a08d874c61a1d415b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    29151a034c5c22c9a712a452986ba06f

    SHA1

    d328e37d4755e941c7c4ab5ad45dc7ae5616c858

    SHA256

    bd8745573b3af23022d410ada76a8806d0f92c689026cdc159b7846147958f1a

    SHA512

    a17905da97ac9a30431fa64fb5ddc4e6711bb108d614bdfd22aaa294c39748a43db206ecce800036113d5f5d7719648e30fd6cf4889840037290d1c6dd737e93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a3f5dde9267c16928894603a0dd8b2c0

    SHA1

    50f3986c6579a5d0bcfffd88567d50f8f7f739ca

    SHA256

    f533d14ef753b0dd673c5318b2d8a24e20ea1cf0d03b622054176df3e17e8d51

    SHA512

    f252791b2d9fac6cfad0468b3ff86ea21eb0c1a6e69a7d24b933197cdfb6940a0e75c693ad6f514a6c23c127aac24d18185d91034fd510f0accfcf6cbca4ae8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c2da66c586917c9231388c43dc34ec4

    SHA1

    e014b49747ed4b9ed6af8ae9632104072584628f

    SHA256

    3d71661a4219113947dcd2053e308e47988ea8032b10a36838d3b8500c8449f8

    SHA512

    c5c9eec0e196f9b11d090b71b5534995d9dd8accd4170f9bde3c37702bdf00f8e077ec03df59f5c9b997cb681e9df0ab0fa2468f194832d6f615ef1239d38899

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61484e954e3a0663d2132760a657c8c5

    SHA1

    19c0897173bd6255fa0940edd98a10118f16cb39

    SHA256

    a6d3ff48e5c05b951be5059d4162d701f8e41b34208eb84533205b9bf5deaf27

    SHA512

    383d041f606c35e7dd71a2e4816eba00999552005740afc52fe61111b8e65da343849acb7e266d7c97d32ac6bb3bf97a149e391d58f8f693659a189ac0446537

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cb814003904a69fa7fefdf02f966a53f

    SHA1

    cebd6cf09a68c58331b2e7205c5f868adc662972

    SHA256

    a90cc600f28e573f598cb710f10163ea0ee9f8069e8fdfa26c9c58cd5ed3c19b

    SHA512

    455b80d69b1ec7dee2405e32be304d45f8ca51a678c5961533ff868312f2438357c000a2f79210bfc340b51a165d9c7324d266818a7878b87e673e62a2203a38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c44014d28e722cd5d5f8ab3724a8d58

    SHA1

    d292a97ba9f57c126b0c874f0872e6ab888e4937

    SHA256

    56f79b86a169976328b706f7338c3a9f434cd93df1571104dc2408c5ee70bd2f

    SHA512

    5e2aa46cfd385d9b060ee24e61a2f4e9fb6e03c17c769303c50c5428829367503cc79e6d556a13cac1b51bdcecc086c6fb57175efb96e68a2e73280a24b08a76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5107ec1917a054c75d954aab306569a6

    SHA1

    c14bc9bb3eba1a101eed10968247cab3f8ba1310

    SHA256

    87277b08ee41b8f6fcb73b83a5132940cefebbca41d2a1452776606b031d3646

    SHA512

    3ce0e2a716c70ce18a4dfbbc224cfc4b60119dabe7818b02f0dfffb81802101ef25361236d9c5529a2bc617ddfd4c1456c11f68a1033dc9c72642a0732a1ff39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f225a29d8617ddbec3910a1f7e11a1ce

    SHA1

    95a2057eb1e88e944e42c1b4130bcc2672af4da0

    SHA256

    914b4225f240b78c0da1193dd8848559c21562f57d5ab71d599547e961f07b62

    SHA512

    90d16640dd847a714b78d76c10ad2b8d4046e99aa081cae746ff2b8f29609c0c975292a673be728704b39f07ad92647393436a5d81a8ddd12d3a7a48ba46411a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4199483caaa523519ffb665298b0edbd

    SHA1

    46a1df8b68e2b5a101a1256194a117174d5bbd56

    SHA256

    ad8dac80da97b9d65a42a13a7ab74077a8114252f1d45c75f22e091e7b6180bb

    SHA512

    c5708bc245a15e6c0ed7f38fa1d06745f8f0a0a1b44b6272b7a73de2766065be316e9365a67dc3cf312513f0e9057b1e163e3ab1ed0d5624cff3521ecb258b3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97831ea81f271815f444d4d7287f37b5

    SHA1

    d43671352c21969e1517fce485caa47991d3c3b1

    SHA256

    90b3eaf725fe0ef3635d2526996779d11958bd05680cd8f1c1310dab7e2620d3

    SHA512

    90defd85ff070d8e342fd4b0747be7f0c3800bfb56fb368ba399dedb9675784bfbe2586813ab6fcc522c6ec98f28542bb2a0230a488911f79a9284b12efb7c20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5d347db5e0882ac431fb3ebbed0c79c

    SHA1

    db920512c0cd86e3041d28c5e385762c702d8772

    SHA256

    7f3ded82a9de1f32219979e20bfbc44439b17815fb241f907d69e85fe2dac6ee

    SHA512

    1eb09e533b31ff4d8124a4d2514b52b6c6cf4f2784a0e8df19e259fc63c36b21b356d829e48bc8839837e75de3944b4231b453be9db3cf464b8ae0d812afe832

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d3111aac9a6d716aa601faeaacda1329

    SHA1

    8d910353b3e71af30c232d828eebf73036758352

    SHA256

    b2c99b19c40f451d487df942003fbaf9ec6fba677f32d20eb645189a3e698b24

    SHA512

    ed91e91e23e55e4db6ee9e604816239124582fd21bf0a43940259e27f512d89ac81585c4f935fe24cab2be1f13f7c7efcf6bf792e056dcc8aff4345d42de1adc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6D66.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6F12.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit