0855ffb4ecbbcd723cdffb0034f7f367dc0d0373914bf0a2030194c5f99637d8

Submit
Reports

Overview

overview

Static

static

Magic Bull...in.exe

windows7-x64

Magic Bull...in.exe

windows10-2004-x64

Magic Bull....1.exe

windows7-x64

Magic Bull....1.exe

windows10-2004-x64

Magic Bull...er.exe

windows7-x64

Magic Bull...er.exe

windows10-2004-x64

Magic Bull...oy.exe

windows7-x64

Magic Bull...oy.exe

windows10-2004-x64

Magic Bull...er.exe

windows7-x64

Magic Bull...er.exe

windows10-2004-x64

Magic Bull...ll.bat

windows7-x64

Magic Bull...ll.bat

windows10-2004-x64

outputs/RG...ng.dll

windows7-x64

outputs/RG...ng.dll

windows10-2004-x64

lib/ContentCoreUI.dll

windows7-x64

lib/ContentCoreUI.dll

windows10-2004-x64

panel/com....min.js

windows7-x64

panel/com....min.js

windows10-2004-x64

panel/com....min.js

windows7-x64

panel/com....min.js

windows10-2004-x64

panel/com....min.js

windows7-x64

panel/com....min.js

windows10-2004-x64

panel/com....lib.js

windows7-x64

panel/com....lib.js

windows10-2004-x64

panel/com....min.js

windows7-x64

panel/com....min.js

windows10-2004-x64

panel/com....min.js

windows7-x64

panel/com....min.js

windows10-2004-x64

panel/com....min.js

windows7-x64

panel/com....min.js

windows10-2004-x64

panel/com....min.js

windows7-x64

panel/com....min.js

windows10-2004-x64

Analysis

max time kernel
124s
max time network
136s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
12/09/2024, 21:55

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 1/Maxon_App_2024.1.1_Win.exe

Resource

win7-20240903-en

evasion trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 1/Maxon_App_2024.1.1_Win.exe

Resource

win10v2004-20240802-en

discovery evasion execution persistence privilege_escalation trojan

windows10-2004-x64

33 signatures

150 seconds

Behavioral task

behavioral3

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 2/RedGiant Activation Service Unlocker 2024.1.1.exe

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral4

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 2/RedGiant Activation Service Unlocker 2024.1.1.exe

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral5

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 3/Magic Bullet Suite Installer.exe

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral6

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 3/Magic Bullet Suite Installer.exe

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

8 signatures

150 seconds

Behavioral task

behavioral7

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 3/Scripts/bin/rgdeploy.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 3/Scripts/bin/rgdeploy.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 3/Scripts/bin/rguninstaller.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 3/Scripts/bin/rguninstaller.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 3/Scripts/install.bat

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 3/Scripts/install.bat

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

outputs/RGBranding.dll

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

outputs/RGBranding.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

lib/ContentCoreUI.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

lib/ContentCoreUI.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

panel/com.redgiant.colorista/colorista.min.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

panel/com.redgiant.colorista/colorista.min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

panel/com.redgiant.colorista/contrib/jquery-1.7.2.min.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

panel/com.redgiant.colorista/contrib/jquery-1.7.2.min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

panel/com.redgiant.colorista/contrib/jquery-ui-1.8.21.custom.min.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

panel/com.redgiant.colorista/contrib/jquery-ui-1.8.21.custom.min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

panel/com.redgiant.colorista/contrib/locale_lib.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

panel/com.redgiant.colorista/contrib/locale_lib.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

panel/com.redgiant.colorista/contrib/rgclient.min.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

panel/com.redgiant.colorista/contrib/rgclient.min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

panel/com.redgiant.colorista/contrib/rgcolor.min.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

panel/com.redgiant.colorista/contrib/rgcolor.min.js

Resource

win10v2004-20240910-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

panel/com.redgiant.colorista/contrib/rgpanel.full.min.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

panel/com.redgiant.colorista/contrib/rgpanel.full.min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

panel/com.redgiant.colorista/contrib/rgpanel.full.min.js

Resource

win7-20240708-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

panel/com.redgiant.colorista/contrib/rgpanel.full.min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

Magic Bullet Looks 2024/Red Giant Magic Bullet Suite 2024/Step 3/Scripts/bin/rgdeploy.exe
Size

1.8MB
MD5

60ab80af7c1e0df829e7bbb4339c5863
SHA1

1e8e2646c2eeb7bad583902ba9c4b685cf3611be
SHA256

8dac4f5608d8e0cdeb8f3d61de1ec21b17c847e53eec83c7ba0db62dacccdef5
SHA512

89cd620692d06b34e00421c478d2ea018ba2efc3ee1021ce2308c00cfaa6bdb579e7c3af2a6627fcd312e8d650dde9550cfa13b931220efa3e4c8a4b37d518df
SSDEEP

49152:cPIEOo6xNNV3y+gZC7DKjzAfQhTA8T+9:C1j+F

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\Magic Bullet Looks 2024\Red Giant Magic Bullet Suite 2024\Step 3\Scripts\bin\rgdeploy.exe
"C:\Users\Admin\AppData\Local\Temp\Magic Bullet Looks 2024\Red Giant Magic Bullet Suite 2024\Step 3\Scripts\bin\rgdeploy.exe"
1⤵
PID:1540

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads