empyrean | ab45f9a36cd3c0e9bef44dd3f71e0c232029facb04d87d9afd0358a712a2bb0b | Triage

Submit
Reports

Overview

overview

Static

static

deniz.spoofer.exe

windows7-x64

7

deniz.spoofer.exe

windows10-2004-x64

7

Resubmissions

11/03/2024, 15:28

240311-swfy3aeb9z 10

11/03/2024, 15:16

240311-sneq2aea2z 10

Sharing

Copy URL Twitter E-mail

General

Target

deniz.ddos.og.rar
Size

17.5MB
Sample

240311-swfy3aeb9z
MD5

71b93f770e5f58bc39eeaf08edf4e2f9
SHA1

f18188f0e5a7077f8fc75ed43c38ef222a66f79b
SHA256

ab45f9a36cd3c0e9bef44dd3f71e0c232029facb04d87d9afd0358a712a2bb0b
SHA512

173234a967b77956c58de6dd7fb9d57f914904669bae16180bd359cb213c4ec93297ba9afb8282046b301c4bc2c92ca7a24b64934bfb6bf76c2248205fe49751
SSDEEP

393216:M+gOTOcRdhIkwQ+zRRP5g1mzoeZybpCMC8wQGJOhkKAKcX1e/2a3C:MtwdhGzv5g1bmupCMC8bGKbd/2J

Score

10^/10

empyrean pyinstaller upx

Static task

static1

pyinstaller empyrean

4 signatures

Behavioral task

behavioral1

Sample

deniz.spoofer.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

deniz.spoofer.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  deniz.spoofer.exe
- Size
  
  17.7MB
- MD5
  
  cb7fce9815a96e6feb347d90fb146c27
- SHA1
  
  af7a4f94182d1e1ee072e18db8505844a8376543
- SHA256
  
  101c9a17bfc0ab717dfd86a3610e17d0c8fb4d8e1d803c58aae520e35cb23d75
- SHA512
  
  30ac2dc430db666c3f18807d2d7be13e12452da4f2f05984d8141fa7f4b2b831e4a5e548101465500c1b1bee18433654526c152aecdf357ee4a9f82b1033d48f
- SSDEEP
  
  393216:EqPnLFXlrSQ8DOETgsvfG8g11pRLvEMmEZHX8Kq:lPLFXNSQhEVgVwuVX6
Score

7^/10

upx
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

pyinstallerempyrean

behavioral1

behavioral2

© 2018-2025

Terms | Privacy