Overview

overview

7

Static

static

3

Toolify Se...1).zip

windows7-x64

1

Toolify Se...1).zip

windows10-2004-x64

1

Toolify Self Bot.exe

windows7-x64

7

Toolify Self Bot.exe

windows10-2004-x64

7

config.ini

windows7-x64

1

config.ini

windows10-2004-x64

1

config.json

windows7-x64

3

config.json

windows10-2004-x64

3

conflicts.txt

windows7-x64

1

conflicts.txt

windows10-2004-x64

1

data/afk_data.json

windows7-x64

3

data/afk_data.json

windows10-2004-x64

3

data/auto_...s.json

windows7-x64

3

data/auto_...s.json

windows10-2004-x64

3

data/auto_...s.json

windows7-x64

3

data/auto_...s.json

windows10-2004-x64

3

data/tokens.json

windows7-x64

3

data/tokens.json

windows10-2004-x64

3

readme.txt

windows7-x64

1

readme.txt

windows10-2004-x64

1

requirements.txt

windows7-x64

1

requirements.txt

windows10-2004-x64

1

restart.py

windows7-x64

3

restart.py

windows10-2004-x64

3

start.bat

windows7-x64

1

start.bat

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Toolify Self Bot (1).zip

  • Size

    45.8MB

  • Sample

    241018-a7abjsyhmj

  • MD5

    fdfaa170b30f82aa65ef0764ad64bab7

  • SHA1

    8a2589e9c24368296d6221c20e4b47e70b7adeff

  • SHA256

    c91917696b589529ae0794d2277d1f64dbeca7a359ea027e9e62dc82857cdd7c

  • SHA512

    e0756cd3c5c39cc3eb5c2ac7b4572e5814afbe780cbc3bd89ac1b9d25e0cf01c4455b8ae0c7b286e011e4958d2906dc0de3f98a626001865f84889221e3cb92a

  • SSDEEP

    786432:+7NzAOjMmnGVkVjKeJPJgyiTUiLs+eDx07AJxOa5NS4oAqm0T/vOaRdLwd7KFJ:+71AIs0NJ27TLsxDx07UxOa5KAqLTNR7

Score
7/10
discovery

Malware Config

Targets

    • Target

      Toolify Self Bot (1).zip

    • Size

      45.8MB

    • MD5

      fdfaa170b30f82aa65ef0764ad64bab7

    • SHA1

      8a2589e9c24368296d6221c20e4b47e70b7adeff

    • SHA256

      c91917696b589529ae0794d2277d1f64dbeca7a359ea027e9e62dc82857cdd7c

    • SHA512

      e0756cd3c5c39cc3eb5c2ac7b4572e5814afbe780cbc3bd89ac1b9d25e0cf01c4455b8ae0c7b286e011e4958d2906dc0de3f98a626001865f84889221e3cb92a

    • SSDEEP

      786432:+7NzAOjMmnGVkVjKeJPJgyiTUiLs+eDx07AJxOa5NS4oAqm0T/vOaRdLwd7KFJ:+71AIs0NJ27TLsxDx07UxOa5KAqLTNR7

    Score
    1/10
    behavioral1behavioral2

    • Target

      Toolify Self Bot.exe

    • Size

      45.9MB

    • MD5

      cc0e960b82abad9c4346aea8f1df1a48

    • SHA1

      1c7fac6c45f887dcab2d4826d10cd157d30f6d75

    • SHA256

      a3d930b4dbf220e3cd114b30aa712d50aa2c6b2ae5f76baebbc950b0cc800109

    • SHA512

      8881b4213f11e9b0757bb9661ba1e6131943844dda4b7e55f6b8b7396e5343e4fadd44836796e0de4dfc0d7c8a24d925d7a6699f24bdb59b3a5e3195cae34acf

    • SSDEEP

      786432:weGIYwM60SVqADFe+GvZAiwjRZnejbjrbz/DVhqtF0yGRG9qrdxUAywzcZyqpy:wjI3g6lG2Nj/efjrbzLVhqtQRGsr7yil

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral3behavioral4

    • Target

      config.ini

    • Size

      514B

    • MD5

      269b5807b040367f863bc20961fa8d60

    • SHA1

      7984dddebd1d7416036fc1e75304ae86c814cebf

    • SHA256

      8292ebe3f7d1fab55d855f2906b5a4c643f5278843227ab60fce480387bfb124

    • SHA512

      96404136e3cba33aacd946c8c10ef3d604aad292795861c68e7212a2bb693bfcfbe591f6a3ad45b2364cb24696a795e6e32f98c52491607bd3133faf2c210738

    Score
    1/10
    behavioral5behavioral6

    • Target

      config.json

    • Size

      59B

    • MD5

      638a06ed0e7ae1001b9638a768e37514

    • SHA1

      b1a7dd695e0971b1adc27a74d241ddf9cb1ce87d

    • SHA256

      0a54bb717afeea7905ab9688a4e8254ccd8a8e6c5ec9213354dfb4974f809ec8

    • SHA512

      44bb78259b0b0f2c7d320e7b457bddea6a2cd1f60e24767fdbea3d58f95999c9b33633a7865287a9f279aaf1cc775500cf6ca6c3267a4262a93cd8d5d913e964

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      conflicts.txt

    • Size

      28B

    • MD5

      dbd65236078ba9e2be9b41dcabd9796d

    • SHA1

      09c4d0b365be5db17e2c4b65b896c36b85b6fd2d

    • SHA256

      468c02df6809df68d8c00045777bf0d46d5bbe55d2288c64dbdf7e979ec8c2e9

    • SHA512

      6918c4488ff4edc4e5dee6cc8e1b3fff6f236e770c8b6749f9084ce21d9ec983a38b2133a32a9b5376bcfc580ea12390cd98ac956b3a7bbf367afa331e2c5042

    Score
    1/10
    behavioral10behavioral9

    • Target

      data/afk_data.json

    • Size

      2B

    • MD5

      99914b932bd37a50b983c5e7c90ae93b

    • SHA1

      bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

    • SHA256

      44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

    • SHA512

      27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      data/auto_messages.json

    • Size

      2B

    • MD5

      99914b932bd37a50b983c5e7c90ae93b

    • SHA1

      bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

    • SHA256

      44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

    • SHA512

      27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

    Score
    3/10
    discovery
    behavioral13behavioral14

    • Target

      data/auto_responses.json

    • Size

      2B

    • MD5

      99914b932bd37a50b983c5e7c90ae93b

    • SHA1

      bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

    • SHA256

      44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

    • SHA512

      27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

    Score
    3/10
    discovery
    behavioral15behavioral16

    • Target

      data/tokens.json

    • Size

      2B

    • MD5

      99914b932bd37a50b983c5e7c90ae93b

    • SHA1

      bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

    • SHA256

      44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

    • SHA512

      27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

    Score
    3/10
    discovery
    behavioral17behavioral18

    • Target

      readme.txt

    • Size

      787B

    • MD5

      a9c7062e20a7f225bf536aa2ed7667c1

    • SHA1

      f84e6702602cdbc7831f742bcc843851d51b57ac

    • SHA256

      a90568cfa763e30caa0a29a1f0351677b82961c532abab910dba3031c5071008

    • SHA512

      c812c23765af4b11481a55e91a62bab34e985cfc81ccfb2d08fa8f9388221abf0c863ef1d309fe9c16582cd563624f83332d5a662dc760bc5fc07cb8dd1a5b1c

    Score
    1/10
    behavioral19behavioral20

    • Target

      requirements.txt

    • Size

      456B

    • MD5

      19eadfcac3b7cb2f90baf9edc6a8a6a5

    • SHA1

      52b0352f0d2f661d62ce57c1b22e64947e023e20

    • SHA256

      e9479b72e31aa07619f945f0068954b50bedf9722a5063de5c7c8e70148d06f6

    • SHA512

      d6c66063cfd47b3b9b115f14abb63663fa0ad1cb4613c085cdac4c48530b82cb34e40da7eaf9da2543cf69ed817b65a06d814da5f9caf404e17c0a4d815b2a94

    Score
    1/10
    behavioral21behavioral22

    • Target

      restart.py

    • Size

      248B

    • MD5

      09ad75864b174963962f169ea7f7cf49

    • SHA1

      41f108483efe464dd642a86ff3bdf4b3e4899c71

    • SHA256

      885c7a1a1bdcdd55bc1efa1b09e51819d52c6b79c40bc6239538e632e3efdad8

    • SHA512

      a1144b5f542da2878ec069b7181b50bc3d10d6a693ee506e542184bd67ca3d6386fc4898e1aa0c46d3ae30fe80cf0d071635ea87856473eeae4740a912059c09

    Score
    3/10
    discovery
    behavioral23behavioral24

    • Target

      start.bat

    • Size

      14B

    • MD5

      92a6f2af2e2bf7d6e64b7821f5400d1c

    • SHA1

      ee3e35bf31da9e6616c1c6a663fd19b4d745a279

    • SHA256

      89b15dd343075c7271ec08f848803709a915526e81831af0a9df53577b5155b5

    • SHA512

      57ebb186b961d2e73bfe554f247b53558cd358bba5716578c355a85caf783087495ca15e981bed2c049e4485bb3d5edf413d90b0e16f68ba95bbdc7f26f5b29f

    Score
    1/10
    behavioral25behavioral26

MITRE ATT&CK Enterprise v15

Tasks