Overview
overview
7Static
static
3MBL - Reea....3.pdf
windows7-x64
1MBL - Reea....3.pdf
windows10-2004-x64
1Red Giant ...Ma.exe
windows7-x64
1Red Giant ...Ma.exe
windows10-2004-x64
1Red Giant ...Ma.exe
windows7-x64
4Red Giant ...Ma.exe
windows10-2004-x64
5Red Giant ...Ma.exe
windows7-x64
7Red Giant ...Ma.exe
windows10-2004-x64
7Red Giant ...Ma.exe
windows7-x64
1Red Giant ...Ma.exe
windows10-2004-x64
1Red Giant ...Ma.exe
windows7-x64
1Red Giant ...Ma.exe
windows10-2004-x64
1Red Giant ...Ma.bat
windows7-x64
1Red Giant ...Ma.bat
windows10-2004-x64
1outputs/RG...ng.dll
windows7-x64
1outputs/RG...ng.dll
windows10-2004-x64
1lib/ContentCoreUI.dll
windows7-x64
1lib/ContentCoreUI.dll
windows10-2004-x64
1colorista.min.js
windows7-x64
1colorista.min.js
windows10-2004-x64
1contrib/jq...min.js
windows7-x64
1contrib/jq...min.js
windows10-2004-x64
1contrib/jq...min.js
windows7-x64
1contrib/jq...min.js
windows10-2004-x64
1contrib/rg...min.js
windows7-x64
1contrib/rg...min.js
windows10-2004-x64
1contrib/rg...min.js
windows7-x64
1contrib/rg...min.js
windows10-2004-x64
1contrib/rg...min.js
windows7-x64
1contrib/rg...min.js
windows10-2004-x64
1contrib/un...min.js
windows7-x64
1contrib/un...min.js
windows10-2004-x64
1Analysis
-
max time kernel
149s -
max time network
158s -
platform
windows10-2004_x64 -
resource
win10v2004-20240412-en -
resource tags
arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system -
submitted
21-04-2024 12:08
Behavioral task
behavioral1
Sample
MBL - ReealLion /Plugin Installation Guide V.0.3.pdf
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
MBL - ReealLion /Plugin Installation Guide V.0.3.pdf
Resource
win10v2004-20240226-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral4
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral6
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral8
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral10
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral12
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.exe
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.bat
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral14
Sample
Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Magic Bullet Suite 2024.0 Win x64/Red Giant Ma.bat
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
outputs/RGBranding.dll
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral16
Sample
outputs/RGBranding.dll
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
lib/ContentCoreUI.dll
Resource
win7-20240215-en
windows7-x64
Behavioral task
behavioral18
Sample
lib/ContentCoreUI.dll
Resource
win10v2004-20240226-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
colorista.min.js
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral20
Sample
colorista.min.js
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
contrib/jquery-1.7.2.min.js
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral22
Sample
contrib/jquery-1.7.2.min.js
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
contrib/jquery-ui-1.8.21.custom.min.js
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral24
Sample
contrib/jquery-ui-1.8.21.custom.min.js
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
contrib/rgcolor.min.js
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral26
Sample
contrib/rgcolor.min.js
Resource
win10v2004-20240226-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
contrib/rgpanel.full.min.js
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral28
Sample
contrib/rgpanel.full.min.js
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
contrib/rgpanel.full.min.js
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral30
Sample
contrib/rgpanel.full.min.js
Resource
win10v2004-20240412-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
contrib/underscore-min.js
Resource
win7-20240215-en
windows7-x64
Behavioral task
behavioral32
Sample
contrib/underscore-min.js
Resource
win10v2004-20240412-en
windows10-2004-x64
General
-
Target
outputs/RGBranding.dll
-
Size
5.7MB
-
MD5
0832d72e53b39ab3bc44822088d6c230
-
SHA1
19bb22a7bd22c018b759e64ce3b4caec6b94f400
-
SHA256
a4bbaae089a1f039e72e0f248b6d0c689f12d298f0264837c6af80db6d3fe68b
-
SHA512
a9d6d2f02a6e50e6838cb686fbe75f5c7a2362c38b3aa4b639ae502faae6bfd36117bf72b31c062d99ef780fa2fbe985ef9950dfb23892db4b7db266d6f651b1
-
SSDEEP
98304:wuUYfftRM8Yk0h1Cfh+1yKihBwRw1QWwoGWaoq:FUatjI1Wh+TTG1QWwFoq
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 2004 rundll32.exe