nigga_spoofer[.]exe | Triage

Resubmissions

09/10/2023, 19:10

231009-xvcx8shg78 6

09/10/2023, 18:50

231009-xg2pfaff3w 6

Sharing

Copy URL Twitter E-mail

General

Target

nigga_spoofer.exe
Size

321KB
MD5

a39ac69629d023112202482fb05c3277
SHA1

9b282c29f071e30805362d8d8023469b80ca3733
SHA256

1721b9435ec0d011da44106891582d6f7026655629e7f7ef73f82e07744d1e04
SHA512

47504b6910426fb47d9f95ca0074fef929f10e72d3b0ccffda59ae6416240ca58c5e69f0ed4dab654b91e86589171cebcea1f0d3d408de815f71b97fa5387390
SSDEEP

6144:nTZMeN4yIuH74xKVO5Tue8UCUV6n+Ig1JlPz6SvSIv:2sbw2O9hCUo+ItSKI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
nigga_spoofer.exe

Files

nigga_spoofer.exe
.exe windows:6 windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

PYS0
Size: - Virtual size: 348KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PYS1
Size: 180KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 139KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE