Overview

overview

9

Static

static

7

How to ins...c.docx

windows7-x64

4

How to ins...c.docx

windows10-2004-x64

1

refox/UpdateInfo.exe

windows7-x64

9

refox/UpdateInfo.exe

windows10-2004-x64

9

refox/file/7z.dll

windows7-x64

1

refox/file/7z.dll

windows10-2004-x64

1

refox/file/Screen.exe

windows7-x64

7

refox/file/Screen.exe

windows10-2004-x64

7

refox/file/curl.exe

windows7-x64

1

refox/file/curl.exe

windows10-2004-x64

1

refox/file...re.dll

windows7-x64

3

refox/file...re.dll

windows10-2004-x64

3

refox/file...te.dll

windows7-x64

1

refox/file...te.dll

windows10-2004-x64

1

refox/file...og.dll

windows7-x64

3

refox/file...og.dll

windows10-2004-x64

3

refox/file...rt.dll

windows7-x64

1

refox/file...rt.dll

windows10-2004-x64

1

refox/file...re.dll

windows7-x64

1

refox/file...re.dll

windows10-2004-x64

1

refox/file...l2.dll

windows7-x64

3

refox/file...l2.dll

windows10-2004-x64

3

refox/file...ix.exe

windows7-x64

1

refox/file...ix.exe

windows10-2004-x64

1

refox/file...er.exe

windows7-x64

7

refox/file...er.exe

windows10-2004-x64

7

refox/libcurl.dll

windows7-x64

3

refox/libcurl.dll

windows10-2004-x64

3

refox/libeay32.dll

windows7-x64

1

refox/libeay32.dll

windows10-2004-x64

1

refox/lrBrowser.exe

windows7-x64

1

refox/lrBrowser.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cd7490b15757f3b38cd07fb329d7aa81

  • Size

    15.7MB

  • MD5

    cd7490b15757f3b38cd07fb329d7aa81

  • SHA1

    7286fe492fe7ce9f8f4e315f7fb550428c0f50ca

  • SHA256

    7c0f72bad64237b4b2749840811299838e0062bd1551182ac82cae17a7e555bf

  • SHA512

    a8b42ef7062f8abe07976b87dc7ee70d6c7964254fd9863d9d045be83e0c0b02c02560a5ac8a0fb1fe75e6df961193d84b2ae42ef7bdad7bddc607a49d917b9a

  • SSDEEP

    393216:o8MuTebBSAVo/tflau/0vq3ARCQ91cl4Yb4JqQ6wD2:OLXo/tfvcvq499JqVwS

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 10 IoCs

    Checks for missing Authenticode signature.

Files

  • cd7490b15757f3b38cd07fb329d7aa81
    .zip
  • How to install REFOX on Mac.docx
    .docx office2007
  • refox/UpdateInfo.exe
    .exe windows:6 windows x86 arch:x86

    baa93d47220682c04d92f7797d9224ce


    Headers

    Imports

    Sections

  • refox/file/7z.dll
    .dll windows:5 windows x86 arch:x86

    57bed8ed27f23a0c1e68a64cb55ab831


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • refox/file/Screen.exe
    .exe windows:4 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • refox/file/curl.exe
    .exe windows:4 windows x86 arch:x86

    631306dd3c0c081b484486c2f2e13907


    Headers

    Imports

    Sections

  • refox/file/idevice_core.dll
    .dll windows:5 windows x86 arch:x86

    d529e17c351c5e67d6285e319b2196b0


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • refox/file/idevice_distribute.dll
    .dll windows:5 windows x86 arch:x86

    aa5b759a7ebdd6e7dd3ab0cfc24250f1


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • refox/file/idevice_sslog.dll
    .dll windows:5 windows x86 arch:x86

    baeb80f23e8b9edf234a5f7b1c4f77d8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • refox/file/idevice_support.dll
    .dll windows:5 windows x86 arch:x86

    9bff5593974b04386bce2b7013900e51


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • refox/file/ihelpercore.dll
    .dll windows:5 windows x86 arch:x86

    5fc4d55f42a8b4a248c713929f0d1d0c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • refox/file/libxml2.dll
    .dll windows:5 windows x86 arch:x86

    831b2314d58ca7e1b605136ab4b0fd73


    Headers

    Imports

    Exports

    Sections

  • refox/file/pointofix.exe
    .exe windows:5 windows x86 arch:x86

    8219a8cb08867750e1b5271078f530be


    Headers

    Imports

    Exports

    Sections

  • refox/file/pointofix_translation.ini
  • refox/file/pp5oinstaller.exe
    .exe windows:4 windows x86 arch:x86

    e221f4f7d36469d53810a4b5f9fc8966


    Code Sign

    Headers

    Imports

    Sections

  • refox/libcurl.dll
    .dll windows:5 windows x86 arch:x86

    49d9f3851a49081045d447b21581cb4e


    Headers

    Imports

    Exports

    Sections

  • refox/libeay32.dll
    .dll windows:5 windows x86 arch:x86

    8249ca340c4000f2bb617b16e5025146


    Headers

    Imports

    Exports

    Sections

  • refox/lrBrowser.exe
    .exe windows:6 windows x86 arch:x86

    573f4e0bd4e3aa150b2f95db5f4c01f5


    Headers

    Imports

    Sections

  • refox/msvcp110.dll
    .dll windows:6 windows x86 arch:x86

    098e9eddf1a24b3fd9465ee992148a02


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • refox/msvcr110.dll
    .dll windows:6 windows x86 arch:x86

    e057a95f8936f77238b048f253956b3b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • refox/refox.exe
    .exe windows:5 windows x86 arch:x86

    baa93d47220682c04d92f7797d9224ce


    Headers

    Imports

    Exports

    Sections

  • refox/skin/Background.xml
  • refox/skin/Backgroundbg.png
    .png
  • refox/skin/DirectShort.xml
  • refox/skin/DirectShortbg.png
    .png
  • refox/skin/Empty.xml
  • refox/skin/Emptybg.png
    .png
  • refox/skin/Eqi.xml
  • refox/skin/Eqibg.png
    .png
  • refox/skin/GND.xml
  • refox/skin/GNDbg.png
    .png
  • refox/skin/GoldenDot.xml
  • refox/skin/GoldenDotbg.png
    .png
  • refox/skin/NetIDbg.png
    .png
  • refox/skin/NetId.xml
  • refox/skin/PinFont.xml
  • refox/skin/PinFontbg.png
    .png
  • refox/skin/ShareRV3.xml
  • refox/skin/address_ico.png
    .png
  • refox/skin/blankstylebg.png
    .png
  • refox/skin/check_hot.png
    .png
  • refox/skin/check_sel.png
    .png
  • refox/skin/check_un.png
    .png
  • refox/skin/close.png
    .png
  • refox/skin/close1.png
    .png
  • refox/skin/close2.png
    .png
  • refox/skin/combohot.png
    .png
  • refox/skin/combonor.png
    .png
  • refox/skin/country_ico.png
    .png
  • refox/skin/edouble.dat
  • refox/skin/email1.xml
  • refox/skin/email2.xml
  • refox/skin/email3.xml
  • refox/skin/email_ico.png
    .png
  • refox/skin/emenu.dat
  • refox/skin/enNet.png
  • refox/skin/fileerr.dat
  • refox/skin/forgetpwd.xml
  • refox/skin/forgetpwd2.xml
  • refox/skin/ggmsgbg.png
    .png
  • refox/skin/identity_ico.jpg
    .jpg
  • refox/skin/login.xml
  • refox/skin/msgbox.xml
  • refox/skin/msgvip1bg.png
    .png
  • refox/skin/msgvip3bg.png
    .png
  • refox/skin/msgvip6bg.png
    .png
  • refox/skin/name_ico.png
    .png
  • refox/skin/newpwd.xml
  • refox/skin/newpwd2.xml
  • refox/skin/notice.xml
  • refox/skin/noticevip.xml
  • refox/skin/noticevip3.xml
  • refox/skin/noticevip6.xml
  • refox/skin/option.xml
  • refox/skin/password_ico.png
    .png
  • refox/skin/postNote.xml
  • refox/skin/postRV3.xml
  • refox/skin/postbug.xml
  • refox/skin/postbutbg.png
    .png
  • refox/skin/radio_hot.png
    .png
  • refox/skin/radio_sel.png
    .png
  • refox/skin/radio_un.png
    .png
  • refox/skin/refox_text.png
    .png
  • refox/skin/reg.xml
  • refox/skin/scrollbar.png
    .png
  • refox/skin/selectColor.xml
  • refox/skin/selectColorbg.png
    .png
  • refox/skin/setCheck.xml
  • refox/skin/showMsg.xml
  • refox/skin/showmsgbg.png
    .png
  • refox/skin/start.xml
  • refox/skin/telephone_ico.png
    .png
  • refox/skin/tixing.png
    .png
  • refox/skin/tixing.xml
  • refox/skin/untmp.ump
  • refox/ssleay32.dll
    .dll windows:5 windows x86 arch:x86

    ec0531a0a20ca7b5772570ff125340ac


    Headers

    Imports

    Exports

    Sections

  • refox/yh.ini
  • refox/zlib1.dll
    .dll windows:5 windows x86 arch:x86

    3f9c5b822b7dac981dc721f09e7b12e7


    Headers

    Imports

    Exports

    Sections