20e8702a052a16ab091c1b24da58832efdcc7eca02d3f74448fc2eec98f53d92 | Triage

Sharing

General

Target

VEX_PERM_SPOOFER.rar
Size

752KB
Sample

230324-tp552sfe26
MD5

876ad6bd7b0fa5283e23f37126da0e80
SHA1

eb5eeebbc26cf5b2f7457ce848d20c02eed03735
SHA256

20e8702a052a16ab091c1b24da58832efdcc7eca02d3f74448fc2eec98f53d92
SHA512

7df914f89ef86b4c83423944bdc67fd1ec719c7e65eb7ff9a7247bc045cd46b5634562ca4d21eb07a5451bfb7a67c681e16005f9299f204a011b4e40c685dbf4
SSDEEP

12288:eSdkEEUkFe9S/D8bX+yqjsUC4Rngxl+9jp5Qb1O89ATTh7B3q1U:VqrFT/Ar+yuO4uxlW5Qbg8oh7B3q1U

Score

8^/10

android

Malware Config

Targets

- Target
  
  VEX SPOOFER/Poofer.exe
- Size
  
  1.2MB
- MD5
  
  d406a0693d263ed93bf082b8cf9f1ea6
- SHA1
  
  c8fefc408181d4cbd98acd8fabee8561aa8bfcb0
- SHA256
  
  a73a8dab43ba92dc9e7474d980f367b70250956fae95ae16ff0c8b5c275fb459
- SHA512
  
  f968c2f6e8392e89b25db15927309224b4bab47150f3da2ef6decbb03efb32d74f557301eadd6b0fbc7927adba0f5cd9d3c4465bd46942fbb18d5b36e78754de
- SSDEEP
  
  24576:pqDEvCTbMWu7rQYlBQcBiT6rprG8aozCCViE7fSW/J4DU8ee8Ub:pTvC/MTQYxsWR7ao+TWB6ew
Score

8^/10
- Drops file in Drivers directory
- Executes dropped EXE
behavioral1 behavioral2
- Target
  
  VEX SPOOFER/instructions.html
- Size
  
  223B
- MD5
  
  fdee03800649197ff588b2a97d4291d5
- SHA1
  
  6fac226142fd6ceeb5a60c1a132bc3987d337b80
- SHA256
  
  05c3bd659a1b4a7e2249f5a8b486522cef1c4163b45cdad00e8f9c070f5a9e2f
- SHA512
  
  947e7b0b55ce67ddf74511a38a3e10f1f6c735b098e437bb487b77c37b10ae9bfd5c1bc3771b1caefbe8c4d6e8a22732ea50f838f5ea3274af2d244d3095ac6a
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4