c64ea4c1784bd5580e8a53668d13945af776f7a3f34a51157ec677ca1f399936

Sharing

Copy URL

Twitter E-mail

General

Target

rc7BYFRON-20240807T192913Z-001.zip
Size

4.4MB
Sample

240807-x8dfxswdqa
MD5

03068efe6eb3a91f6dea04f7cb3a65ca
SHA1

940b50b1fa035c15e5f7f80c6b0b53e1998b1fb5
SHA256

c64ea4c1784bd5580e8a53668d13945af776f7a3f34a51157ec677ca1f399936
SHA512

7e746d3650cd656c06933578dd49f081ef6530597430d6a6b1faaa05c5a6f7c14a71fa8cb5c2c78d6a5f7306e0d861e35da4ae94ea9bdd4fe5b756d08f1125cb
SSDEEP

98304:WSbNnmWPIHEwuijX3Gxx9zUuNvVWiKukYtU127Uhq9UhMmjws6+Y:WQcWP/zijXidUINhkYtqhBB61

Score

3^/10

discovery

Malware Config

Targets

- Target
  
  rc7BYFRON/0xAzul (2).dll
- Size
  
  208KB
- MD5
  
  fb437fa76df479d1c7f32326494d3922
- SHA1
  
  f6ead50a07b938b326fab77f053658b00c1bf789
- SHA256
  
  df655e9b4aad5c8c90828755126d8211d6ddd18aa9a38590ffbda6f6969df590
- SHA512
  
  9925f8c5634721171158a28b14c59ba8421c85f1b31a6d0d393dc9e9e5195052fb619adfcdc2d77fc6bf78eb550674097d2cee67bcc7ec26313f5e94e784fd57
- SSDEEP
  
  6144:AlniJt1wpYpuXYrlXbp2m/8nTyOcTQftV+k:u4EorlXb78nfcTQ1x
Score

3^/10

discovery
behavioral1
- Target
  
  rc7BYFRON/AlphaBlendTextBox.dll
- Size
  
  24KB
- MD5
  
  e6b8735ea19da68d9baa23f945a6fad3
- SHA1
  
  65ae6742bf4106ce56d57d3ab427bd3e379f9ca3
- SHA256
  
  48541be9ed6be56e4ee61dd48ce6b237b7a83a3be4db5a54ce350a042c77ecfe
- SHA512
  
  ca3f3945406b9dc64b67f78cb75687b487203f177f4d3a96ae070f5aafa01ef43c733dd69847c095d6484a616abfe85f37568f8b289564693b6a3947fcac4585
- SSDEEP
  
  192:iDGJzcLqS+q+obtogcv7QZYU+Am6+cfX/huI1Ps1YK2c5PkDVX:iKqHtobQZYU+Al+8XAI1q2c5PkDVX
Score

1^/10
behavioral2
- Target
  
  rc7BYFRON/Bunifu_UI_v1.5.3.dll
- Size
  
  236KB
- MD5
  
  2ecb51ab00c5f340380ecf849291dbcf
- SHA1
  
  1a4dffbce2a4ce65495ed79eab42a4da3b660931
- SHA256
  
  f1b3e0f2750a9103e46a6a4a34f1cf9d17779725f98042cc2475ec66484801cf
- SHA512
  
  e241a48eafcaf99187035f0870d24d74ae97fe84aaadd2591cceea9f64b8223d77cfb17a038a58eadd3b822c5201a6f7494f26eea6f77d95f77f6c668d088e6b
- SSDEEP
  
  6144:SIQpxILDXGGMO7Ice9C5kQw2hWHcHTykhb:SIQpxILDXGGlET9n/cHG
Score

1^/10
behavioral3
- Target
  
  rc7BYFRON/CeleryIn.bin
- Size
  
  44KB
- MD5
  
  2682352886b9de7763dd637ff940ef97
- SHA1
  
  6df1516ed9f1084bd0e7b217996353afa3babb98
- SHA256
  
  eab4356a735f604b31f493f2c9f0f98448ebc2671825e348145609fed6e927e4
- SHA512
  
  0799a9d1126b444992638bb16e62726d7d49753d74845114f0076fb5d1e7159c83d0f7e62a1a80a9b034a59529ef73b0fd7acfdccc754cc9c3cfd1984ae4ec3c
- SSDEEP
  
  384:rVdzew6q0MEe7Tc8cZO1D9WDPAULcRUSoTYVJa51xoVMmA2QdwB5bh1r:5YiXFcZkRcZJTYVJanUNA2jj
Score

1^/10
behavioral4
- Target
  
  rc7BYFRON/CustomizedTitleBar.dll
- Size
  
  23KB
- MD5
  
  1192fae97771abbaf7eca65da83a43e2
- SHA1
  
  fc5ebebbf7f7cc2e1cdad30a074c8f4456c28d8a
- SHA256
  
  a9b3e7f64976aaa555742cdcd9059e0502da014fd0d95a19350e2c1dbc382f73
- SHA512
  
  fdaa20a4658292fd9650f6e380b470cce67eb3037fe06357d735e61d8c19e4384b10442b288214cf720be80b2f4af1abbb15e9ccc63916636beec20662c26a16
- SSDEEP
  
  384:mZ7qhjzFUpp7w/Hbi1SVr+xTDvPJqpI6NoxMXlrE:mtqhj5m11LxTDvPJqpIOoxMXG
Score

1^/10
behavioral5
- Target
  
  rc7BYFRON/FastColoredTextBox.dll
- Size
  
  327KB
- MD5
  
  daef9c4c042fdfbb3ea124527c543291
- SHA1
  
  480dbb944a073f801329c6b2967152917b0d24c7
- SHA256
  
  233de7664a9db9ffe5c0c3b64640cd8d5551180f1cf47a8a6f615842c8ae891b
- SHA512
  
  51ed6700e2f3a61cec65cb704df4a4843bae315039a1f2d07fcd5db3f391ebf4db0691c83d173ccf8428b1eea7174b0eaf51b6e90a8b377b8dd2d1415429c960
- SSDEEP
  
  6144:/4y/dRrwjgh6nVsSe6L6BF8VhfmGbOyijGzGbsqmLDnmeNZeMq:/4y4gcVsdMMKmGb5z4eN5
Score

1^/10
behavioral6
- Target
  
  rc7BYFRON/Microsoft.Win32.SystemEvents.dll
- Size
  
  27KB
- MD5
  
  3778ef27e0deacce4353eb182356e6b3
- SHA1
  
  b6c58eef1655060ce132c9693499e33a00d0eb0d
- SHA256
  
  dd38a74545cb68663ab67e6e33ae9fa78b6f2d6a9b824e42594cdb5217549c8b
- SHA512
  
  b932a924e7fb5fb6b15d2670fca46fec910b881029cf6def5e09f8e27712605a16d667a12d34bc1030ac6134fc05f9f1e7e323f20fcc51ff4111f6693be061e2
- SSDEEP
  
  384:QIbfQ5+Tb9XwR3OzYotXnNUWrXJWnMTb2HRN7ZQWcYR9zEMLr:QIDBTb9G3Wt9Rd/iZvn9zfX
Score

1^/10
behavioral7
- Target
  
  rc7BYFRON/System.Drawing.Common.dll
- Size
  
  430KB
- MD5
  
  72d870a0c7e3685b0b553f46ab0b4657
- SHA1
  
  d4a164c9944229e6e3a16e1001e5f4251f8e6e8b
- SHA256
  
  53c453aeefcb4f52f63af364a90c84d1bfc537052f7b339075904a49affa4cc1
- SHA512
  
  f663d747935cea4dca2c69e0a1752ad3c842375fbb53b7549a7a183db984dba6c167ca0f0ca146c9fac2ece8aec977973fdb171f2fb73824b8cff14e9de8e47c
- SSDEEP
  
  6144:NKtDk4PtjwWEudAf0CZM9O1rFfyX+HWImTMSeibJgZ8Kkqs53fJxRCCh8ZfwLx05:NKKOtE0J9HX+HWImTMWg2KPsFJxsuK
Score

1^/10
behavioral8
- Target
  
  rc7BYFRON/WindowTitleControl.Sample.exe
- Size
  
  11KB
- MD5
  
  b95db3c131725844c2bd650c4e5e4402
- SHA1
  
  71338db145c9340872c98f7f38bae9783cb5addd
- SHA256
  
  67fade9710b46dbf5fd63a7ae83a074a980d43c7f4e0926dadb999f2fbea63e2
- SHA512
  
  3333adac470e3998e210d5284025c315686c07b1dac766754c9b418a74195ecba791d7ccaee58c59a24489477f455eaa482420242bbeb3217e0474d0974e7938
- SSDEEP
  
  192:RagatmsLLreEeyQpAY9fI8r6mwIRvhyd2hq2AuVYBmBrTx:Ragataj7r6mw+pydUqyVim
Score

3^/10

discovery
behavioral9
- Target
  
  rc7BYFRON/WindowTitleControl.dll
- Size
  
  21KB
- MD5
  
  129903712629bcf9fdfbec05229b7ceb
- SHA1
  
  7295b8818a98b454a9be98c344e54f14d324384b
- SHA256
  
  9767d33b6c420c5b2dce038d8628e9dbd6838fc36273d15c443b2077c968631b
- SHA512
  
  ff32588e6a643a68938128080a0db20425375ac134a3821e543e7fd5c65c9886822ac526f4a6e03c8501091caf6c50f2b7d2a409c15a74b1f6a2fd00889ece93
- SSDEEP
  
  384:nJCG6eYIM3fZpAtdcgaqFBvH0iA1BMbah7ncs+kCjbL/pbe5Mb7qXE8/MyJG1i2B:nQ6NBsLwRfLMP5GQ4OG
Score

1^/10
behavioral10
- Target
  
  rc7BYFRON/lua5.1.dll
- Size
  
  164KB
- MD5
  
  ee3043c17751c763e26d03f6eebb1b8b
- SHA1
  
  91d52c619c561db7f678b43456a2bd500064bfb1
- SHA256
  
  26384c6ee7d50863e3fb65fdc1bad452d9311f34d782390401de9bb130eecc4a
- SHA512
  
  1ee1aefef0ace1d5fe4a5fac06d1e46e55c9a2180b98cbda540cdf4a15e5e6f17c99c473276524b10485be574032a66c34ce08a9c973e9a46c59249307dead41
- SSDEEP
  
  3072:PUvMMlibAYKY4rg4ODk2nCZdNcbjNXMga9j6n9aWBn:MvflibAYK/rFdwNcFI9aW
Score

3^/10

discovery
behavioral11
- Target
  
  rc7BYFRON/memcheck(1).dll
- Size
  
  70KB
- MD5
  
  d0aed298460a16c1b587875d411b0b4a
- SHA1
  
  f542c3c3bd06c27c70c469bcced845863b10114d
- SHA256
  
  e4e19790be03a782497d9ca11f74010b6a016127de984c7cb67a9ac2d04bdfb6
- SHA512
  
  d73bbbe77b3caf43696c1685fc89c4d0ac2f0d6e11e6d0161943a2116073cd510f5349c369e51b748ce32c07047a0308960073e5d368acc882a7397398260c92
- SSDEEP
  
  1536:pWAlQqfkspI8SZ/b61s0onHsgQXKZsW9QrcdKNZhn6YGxHu:pWypI8w/b6OpMgaKpQ6Kjhn6lO
Score

3^/10

discovery
behavioral12
- Target
  
  rc7BYFRON/rc7.exe
- Size
  
  245KB
- MD5
  
  7f70ef0e7ecf20dd93d084e8e8b78229
- SHA1
  
  db7c7172ae30977136e3d0982a5573dcc88053c8
- SHA256
  
  d37c06cc5a101f7b14cbdcb2d73394042cb7bf1bb8624246012628588d83ead5
- SHA512
  
  31a6f37e3e00c0b2a528ab9ea9eea62238eb749ccd519529cf12d37b667ecc899147400e1d9da6ff57a67d122545cd2d2f825596db5c84623166a6df4c539644
- SSDEEP
  
  3072:C5vnr5Tbx829UOeKnn2LFzZBp13u36wKp4FULCeos:CBKjK2LFzZNf+UL/
Score

1^/10
behavioral13
- Target
  
  rc7BYFRON/rc7.exe (32 bit) second
- Size
  
  214KB
- MD5
  
  b2fe0875e6b8461db3f41d29e4050068
- SHA1
  
  5c955749fe3a922c7d14f202bfd3bc6eab1d5c7e
- SHA256
  
  12b9fc4c2c0a508383de02c8b58f75af48384007be1108b97593e2fd85b30331
- SHA512
  
  353e91aa2df0cc6256aa5d13b64a054fa1c77a511adaa997d6166e2e3efb37203d5ed5b44915c35420befe016a7c4ae4c52dd6a2bf5195e98b3c04c3cef1caba
- SSDEEP
  
  3072:k5vnr5Tbx829UOeKnn2LFzZBp13u36wKp4FULCeogc:kBKjK2LFzZNf+UL/Z
Score

1^/10
behavioral14
- Target
  
  rc7BYFRON/rc7.exe (32 bit).deps.json
- Size
  
  5KB
- MD5
  
  0b7254f263c248b68e9452cc4d868534
- SHA1
  
  b6a71dcb2520a771c118a87e9b85eb6c7d4e3e16
- SHA256
  
  32abb118f8f3074b77af521ad18d6dff82b5b3398ebf6557a35843f102c1f8d7
- SHA512
  
  0fb00389d1917223f88054395cd1a0cbcff132e593d935d3b503b81857d65b632e64ce4fe044e0385b2ede3fe84680687914e63f06cf1291c160396f992ab6f2
- SSDEEP
  
  48:nC00Uwy7pgETTEHjKRipWEvXihmWEDw1PtOWELH89H2qHrSHYUH5t7awQw0KhHB8:YIuYcXpMlng7LGuAC8jBTMY8KDCKnF
Score

3^/10
behavioral15
- Target
  
  rc7BYFRON/rc7.exe (32 bit).dll
- Size
  
  9.2MB
- MD5
  
  eb8e323753626d09f33ff74e967af238
- SHA1
  
  de1c6547f466c6ff3c3a26665a584c29e9c4038c
- SHA256
  
  34bb203daf6df01d2a4ed5368dc2714a3a30d74f1deef3a67fec6b50d5270e17
- SHA512
  
  8ae59d49898ff82db4dcc38e2ae0247bf0ad55bd0357feead43e2e2eec4b37eb5f2be23d6b507027077b5e3a789a8f78126c725d2ad2feeaba7e260521f6e553
- SSDEEP
  
  24576:rvvxmxILQLia333333bSK14Hm5/yErEg:rvvYxIcLia333333bSK14Hm5/yEr
Score

1^/10
behavioral16
- Target
  
  rc7BYFRON/rc7.exe (32 bit).dll.config
- Size
  
  312B
- MD5
  
  1f4a3171f5e6d9bc44fdddcf64ebe4bc
- SHA1
  
  e6b6728df078703a3d92a8902d0c3c0fc3564cf8
- SHA256
  
  4764bb5b501ced5a1f6b14675fdda31b7c773c0575a3c38fd3b4e7734a506fa2
- SHA512
  
  c74d4eb7ca54435271bd3b9d7d921c45040917f8218546243fe1616cc6207ce782fb8b9beeda00c4458638e814cf57596ae07459a093daa1ff00fc8ff1a4a224
Score

3^/10
behavioral17
- Target
  
  rc7BYFRON/rc7.exe (32 bit).pdb
- Size
  
  20KB
- MD5
  
  60e9ce505b97e0de1432a356a282dfa0
- SHA1
  
  6021a0ed1eb4f78b9596d45c6c3df165c9c9aa8a
- SHA256
  
  32c8836ff116bc8d7055b73366daef2f800219f4558ad0535a47710f9d31304a
- SHA512
  
  fc87c4ea02266c7d022aed6d1a8ef723b8a2c2786605368ad0abb6ff806e925f26a456a2233e94e8baf94888fbd37efe9eb9c03dfa7ebdc12003fd1b8105d414
- SSDEEP
  
  384:cpcTPMUlE1vKx30c4+WYc7ea1QzIwBvxdj36gLb2pHz+Q7rBdBkt4FfrZH1UHAfl:c9+MiZdEKjb2pxb8cIkZX0HaL39
Score

3^/10
behavioral18
- Target
  
  rc7BYFRON/rc7.exe (32 bit).runtimeconfig.json
- Size
  
  266B
- MD5
  
  d720176a229e9d969b40fabeb0baf62e
- SHA1
  
  f2d8e97a6c6098a10dd80553eaaef7547ad32ba3
- SHA256
  
  321b4e463bbacd6113aa337511bdebf5e7356e9971744346b28424607c7b483a
- SHA512
  
  0844f9aca147014a68248c43310bf97e0a0a3679fc84650aa0a27aa09f70f56fa071c0ace1be80f0e33ce4dd3f865eae11e946d98d21af916dc1a7f945acaba0
Score

3^/10
behavioral19

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19