spymax | 6d214bfa186bbb39302b1d8ec3ddd57c161064f55d579983d391edea9e6036a9

Sharing

Copy URL

Twitter E-mail

General

Target

SpyMax 4.0 - DenQewPie.7z
Size

102.0MB
Sample

240415-lsdk7sbd88
MD5

2121151ec205e09fe8940d619b386aa8
SHA1

129e4e4dcd96d3636e36a73fbc26c322a52aecb5
SHA256

6d214bfa186bbb39302b1d8ec3ddd57c161064f55d579983d391edea9e6036a9
SHA512

4925bd0b9241758d63783a6b050571295c6d9a669f6a30de993c7e770b7e63db68376a2429da62d85d40544ed2f58ee79b2dc2767211fec7b252f3c3b4cbca25
SSDEEP

1572864:k2P0BsgxVDyDz4k0stjupZqEN8xUse9Bc/oVxbuKKqhFDXyWXQkVmPvnAEx/bay9:kvGDkkHPEeGse9Bc/uhBHYFBba1OzD

Score

10^/10

spymax discovery

Malware Config

Extracted

Family

spymax

[SPY_MAX_IP]:[SPY_MAX_PORT]

Targets

- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/PATCH-SDK26.apk
- Size
  
  28KB
- MD5
  
  ac7e3b5bcd591fe15bf2c5aa43f389a8
- SHA1
  
  9bfb12f6b99c9d7e80123c224a3c0d89fede5c58
- SHA256
  
  cde47bed5ec83e29f6455ec35228c3f56d488393668f5b720b79fcd6cb3bc098
- SHA512
  
  a17dfaaf85f7347772981b91bbaa7c117d38d18213b2dec8e37f62a7fc5516002e0705e54b243df46ec96e4d998ef6fb58d5a1bbdb9a9a9a546012c53fe36efe
- SSDEEP
  
  768:T7qKKd3PyfFrT2GJxeEUaDWD2RKFCl3fp66/YzL:T4P8eGJxOaDJ66/YzL
Score

3^/10
behavioral1
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/PATCH-SDK28.apk
- Size
  
  28KB
- MD5
  
  ac7e3b5bcd591fe15bf2c5aa43f389a8
- SHA1
  
  9bfb12f6b99c9d7e80123c224a3c0d89fede5c58
- SHA256
  
  cde47bed5ec83e29f6455ec35228c3f56d488393668f5b720b79fcd6cb3bc098
- SHA512
  
  a17dfaaf85f7347772981b91bbaa7c117d38d18213b2dec8e37f62a7fc5516002e0705e54b243df46ec96e4d998ef6fb58d5a1bbdb9a9a9a546012c53fe36efe
- SSDEEP
  
  768:T7qKKd3PyfFrT2GJxeEUaDWD2RKFCl3fp66/YzL:T4P8eGJxOaDJ66/YzL
Score

3^/10
behavioral2
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/SpyMax 4.0.exe
- Size
  
  2.4MB
- MD5
  
  8343d36e6d175e648796e0b4619509e8
- SHA1
  
  55072df90b4dde636ac9224da96b292d541a51ae
- SHA256
  
  982608c4bc15e5d7f36660665d96b5625d5cfffd63c895ed67956562a6807b8a
- SHA512
  
  18e5319a9d3e33cfdc74b847f8d4eeb9ce59fc0b0674561c6aa16d925bb2feb1084814b6dfe2da8c9526a1fae10636796b85ecd227bd8f741461ed57d5b4cf86
- SSDEEP
  
  49152:qIJfVyhrxCsY5SuQhk10PnXoCCCRsTWNPHlPp6b+x:qIJdyXRYlSq0Pn4C6TYPHlh0+
Score

1^/10
behavioral3
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/WinMM.Net.dll
- Size
  
  43KB
- MD5
  
  d4b80052c7b4093e10ce1f40ce74f707
- SHA1
  
  2494a38f1c0d3a0aa9b31cf0650337cacc655697
- SHA256
  
  59e2ac1b79840274bdfcef412a10058654e42f4285d732d1487e65e60ffbfb46
- SHA512
  
  3813b81f741ae3adb07ae370e817597ed2803680841ccc7549babb727910c7bff4f8450670d0ca19a0d09e06f133a1aaefecf5b5620e1b0bdb6bcd409982c450
- SSDEEP
  
  768:LyasDzF2TDSemqD9tGI+ffwj2Au0LVpqmf7KxcOOrYCPTxqPb85:LyaXKemqD9tGI+ffwj2Au0LVpq4KWrlv
Score

1^/10
behavioral4
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Lib/Build.exe
- Size
  
  51KB
- MD5
  
  bb9333335e260d27d513b7168c46ebd0
- SHA1
  
  2362797fe08013602b0253502ef66ef57f730791
- SHA256
  
  bdd100c9b0cfde21cba33dd74b9149898cddb2917ec8e2ef80d2c2d1bf255c73
- SHA512
  
  59ff1e9e21aad6d1a6dc7da78a3bcedbbc83191d07cfca1f09eab7c4ccebc8f32dd033742175c5c27e7fc9abaa5237dff88f3cb1087e4d73f99bf9c2c51b4ae0
- SSDEEP
  
  1536:CewietCJQAIC4MLLLYfmnYMwGNyEarw47vmVcl:Cvbw8MwGNyEax7v8Y
Score

1^/10
behavioral5
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Lib/LibGSM.dll
- Size
  
  6KB
- MD5
  
  5d552d57a008c1282f1b7263a65f707e
- SHA1
  
  0f6cfe5a5798c762bc01e8b9846b5a8417b3c246
- SHA256
  
  d287bd2e539bb200e79a23450597b66f0366e627bb5f249b74b266696f3f665d
- SHA512
  
  229a771d59e86aaff5e86e9e3c9b63234c52bd2021328ff6aa99f3e2b8be3926d11e384ed439eeadaa96ce692b2b2a2cb46c73ec56a782afa8eb7c04e0b7bb13
- SSDEEP
  
  96:P21/ap0QgIEq2PjTy4RKHFpTTEtBY+9JenP9h1:PSiJYYTTEwuJI
Score

1^/10
behavioral6
- Target
  
  platformBinary32/bin/JAWTAccessBridge-32.dll
- Size
  
  15KB
- MD5
  
  ccd58c430a0049dc247d47abe2b07154
- SHA1
  
  8b0ed098ad4e52244e18582fc0fa20fdb3cf9041
- SHA256
  
  2e2019435694b89a7ef49ab75cf291278417bff384b814da1e451285cb8d64c1
- SHA512
  
  6401a133638b399eea66005af81e5eee0acb384927b79c4c241d2c97a731a384ec567649a3a2b0a5163a3c9ddf1a2ee3402660a0c4f87b9ce4a2d172e9f133e9
- SSDEEP
  
  192:TcdMm5Y8m3XLPVT65smse6ziuK7DWpHTyFonI7CY0ouasnZHSF:iMOa7PVHm4ziukDGyonxLPnhy
Score

1^/10
behavioral7
- Target
  
  platformBinary32/bin/JAWTAccessBridge.dll
- Size
  
  15KB
- MD5
  
  18a83919deb33b572e42b08000e362a1
- SHA1
  
  24cf5bdc5d6d50d5fed3f0cd7bfc401387c0ea00
- SHA256
  
  4227bc0f4ca568c8bb84cb01705ecad235826297a4b942cd56f2f2a3cfd882c1
- SHA512
  
  b126e3a03739b84ea45ec51f259906d8e2d0b6bbf351382739aa2f65a7a168028e4cd1e1335c4e7ab8ef09a65f20a89722ec695e0fef9e5c69db17d3084b0027
- SSDEEP
  
  192:VqcdMr5Y53XLPVT6ts6a5e1HVuurDWpHTyFonI7CY1duasnZHmR:VJMNW7PVp6THVuMDGyonNPnhw
Score

1^/10
behavioral8
- Target
  
  platformBinary32/bin/JavaAccessBridge-32.dll
- Size
  
  126KB
- MD5
  
  d382150d3dbfe4752fbe2ee23f10f1c9
- SHA1
  
  d482e342b8f20d6b5c249ecfa0dd6ab95514f32d
- SHA256
  
  10380aabe130ebb62ecf3d09620e8e15fd2335a1ea2faf74c41d057d9e06eee4
- SHA512
  
  72099a0599fd15f4ede5d295cc2e478fa6cd9a7a820f801fd55e634ce03a0cb002471d77329b0d74a72ab964ec8475342f29aeb3b709f0d08d58503dc9fdea2b
- SSDEEP
  
  3072:kvAznTOzUca38u4nSK/e2Hrgc6kZAn1yEkBKMKy1Zf22QYHJiuzTl8ShzzM+64mf:kvcwUca35BZnQvw
Score

1^/10
behavioral9
- Target
  
  platformBinary32/bin/JavaAccessBridge.dll
- Size
  
  125KB
- MD5
  
  8fb0d7aa10d26f3e64dd97e1e0373356
- SHA1
  
  9e985ba111d6ce33e582ccf00bb618437402ce16
- SHA256
  
  d8f4728c6a835509cd5a26bdcd248b4176127c5b62f914da9e8a060b354cca73
- SHA512
  
  d44de642eb3db09fb521d9445ac873cbfd97c8560754fd0832454bdf031d29571716579914d1ad2ae6a218a5bd4f1dd9a38736ac392d7144ff41c5bb88556103
- SSDEEP
  
  3072:IpVJG+7UHP/g791fU+MExgK/e2Hrgc6kZAn1y1koKMKy1Zf22QYHJiuzTl8Shzzk:IHU2Uv/W99U7xZnwsr
Score

1^/10
behavioral10
- Target
  
  platformBinary32/bin/WindowsAccessBridge-32.dll
- Size
  
  97KB
- MD5
  
  a344973ef854091e2f66168f95818140
- SHA1
  
  9402e4e5b17c11459cb19631ae25b2026ef22829
- SHA256
  
  bc18778df9b32a4dedd8c9a98908be58989a256d1b241aa0a1dec08113a7750e
- SHA512
  
  80482e45bf70d34664dc9d6ac1ebf1feb41fff08614df69cd0d200d2c489a31504f017c371542f4678f4ffa4d8a2db91cd12a3656ebe4d92ab6da37cbf268786
- SSDEEP
  
  1536:BRQLZsRXloJQrrUQ+1oIiYlM/qNX8cCkxTVPXIecTaN80nstj:B31loJQrIQ+EYlMiucbpIecudsd
Score

3^/10
behavioral11
- Target
  
  platformBinary32/bin/WindowsAccessBridge.dll
- Size
  
  95KB
- MD5
  
  3de11b70769b2029c69bb72e054976e2
- SHA1
  
  c7f60a0c9e22189b496cee19a038521c257a4d9a
- SHA256
  
  eceadccbe120bbe6fd265fe6b19be43148ab0eda663dd866fd8db764a4cadd22
- SHA512
  
  e0d4f3188e6c360676c781f13637f7bf7629cad690846a59210152d5c0d4b4bf4aec87a69befb771dc2f5eee92d1aefd19d3bebea7cb9020e29f1574853d2a17
- SSDEEP
  
  1536:P1LbpRSr0L5fk61kcB2iY39wqwXIA2kUnXbIXp8Whyj8Fk3W:/R9lk61kwY39zTA2bIXlwQFkm
Score

3^/10
behavioral12
- Target
  
  platformBinary32/bin/apktool.bat
- Size
  
  135B
- MD5
  
  b02966b106045115fa8ef94a4e67537b
- SHA1
  
  f901df8bbfe8fe50e560e625a27da1c6c4f0e9b3
- SHA256
  
  3d8108beb40535e68e7f6421a4309408ea5efab91707fa25d862154e3cc9b6df
- SHA512
  
  6274a4568285c74985b095d1dd5649044b61cb7c372dc4653c62a2b92833df477f5a5453be0e598622918b4e6c27064a57e5fba1a657dd064e6d9598fe2f94cc
Score

1^/10
behavioral13
- Target
  
  platformBinary32/bin/apktool.jar
- Size
  
  10.5MB
- MD5
  
  ea45fba42cc01f82b7b805a1823af211
- SHA1
  
  0c9751a0c03965cf71d26c4d2d9071e85934465b
- SHA256
  
  758b1bd58f9c9dd5ca85258d31c75f32e5878a502e3d75c66f3bfacf74b9dc1d
- SHA512
  
  6503fe3e80f83b09e07e97d7888a7fa686e46b0e7a8501de13e134047cd0533bb3ce80f776e63ee4056eae77dad991481bc68dd423fae69766bad11157e253f3
- SSDEEP
  
  196608:+7ymmCUyiCGyXpyR9f3ID5nBGM3iJnoVnSwS3xAW2LpRXHlUzWmK:+7yOUB+pyvfI1ImiFoswKxAWKdj
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral14
- Target
  
  platformBinary32/bin/attach.dll
- Size
  
  20KB
- MD5
  
  6dd0a2706bd9a72b8853aa8d73181aab
- SHA1
  
  e0d1ad244487e457d9f1800e983127d9f5d676ab
- SHA256
  
  7370a6e3533dfa636e39c0a5840a92ac7ef34931c5ff6f44099c711478a8ee93
- SHA512
  
  2080baf6bda35f558a5e108604bf2a4957604243a905b273db6098f9ce3fa3302bae682e6ffe5b713de697ca7431e3e7f6d2a5f0e32f82b85f48e90ceceda1ac
- SSDEEP
  
  384:t/ohb9sWVkmcBks79668W1W7PPVEoR7f8DGyonRPnhZ:Foh8Dk6XUd3f8DGyQhZ
Score

1^/10
behavioral15
- Target
  
  platformBinary32/bin/awt.dll
- Size
  
  1.1MB
- MD5
  
  cd0a21f0fdf44816aae899b4d5fac5af
- SHA1
  
  8bc88fe7c9ece0910aff85a7b07578047602d202
- SHA256
  
  0a6fa37644d15b6d6e89faa05522cd7c61a455b3f5fea2bc8d82d4fd881663f0
- SHA512
  
  61a774c9aa85d7ad555e31d8ee4c93ea6041b3f01bf2fcb67dd430b4daae8c68393932428b4c34e6798e9c14b04502694b95accb12bf10cdff671736d01d7005
- SSDEEP
  
  24576:vE+LI8ZMrDMnUGO7BuEdh9GBA15phfbcbq:8qGjfL
Score

1^/10
behavioral16
- Target
  
  platformBinary32/bin/clhsdb.exe
- Size
  
  16KB
- MD5
  
  ccd51eab4a0a66da11b6c1e01a17bda0
- SHA1
  
  a67c0a4702c51b457035b8ee95e0d3f7c45c4c10
- SHA256
  
  b7eaba3a063ba32ee23701319656b86cec28ccc6c0fe4b42fb13e51bb3414162
- SHA512
  
  6c9d73eee961b3c0d82a44bfcd86e0fe54c977ca5b284c775c5fcf05378d9d8f633aab9ec41c6499a42fec1ad3bf57f0a031f08e658a11dedd0dfc4f1995971d
- SSDEEP
  
  384:GpsW5cnZLOHmSHhV8I7IjeCrcyDGyoniPnhV8z:Gps9nIGS/8KICCzDGy3hS
Score

1^/10
behavioral17
- Target
  
  platformBinary32/bin/client/jvm.dll
- Size
  
  3.7MB
- MD5
  
  f3ab3c90201e0f092e3f69d0dc379fc4
- SHA1
  
  5b58a83a875c5aae82fc3bc738acd39f6c268d0e
- SHA256
  
  f47842d41f9e0605d24a509e4e76b8dda71894571536ccb4a50464b5f83c8420
- SHA512
  
  f6909ff9fc2526bbd3233379c2590549f211472d6f15e6f1667a523549d96836d8a2d602edf55c8c0779b28cf5d8159d27728156f8a3884868b7df8a1bbc9edc
- SSDEEP
  
  98304:Pf7HWgN5RUmWJi8jKHz8GpJY6Lcv/GEZao:Pf7HpRSJi8jKH/3Fcv/GEZao
Score

3^/10
behavioral18
- Target
  
  platformBinary32/bin/dt_shmem.dll
- Size
  
  25KB
- MD5
  
  33990e423774c2e1ef62702f52ba49ce
- SHA1
  
  20261f7d281bba8de2eb5c21d898597d8a2c585e
- SHA256
  
  37e78789078575793b9bb8a979c40b055c06a3d620e970558045a097689db6b2
- SHA512
  
  83ebfd5c10da1b591b7580afc966edf5e8a29fd4e6dcc85014d2a3e21c2db00f9856c5697bf46a2516f6817ecabf5b965077d3ac44076bed19631fa2f2315805
- SSDEEP
  
  384:x3ZQgxsj7ttBesu6PXu6ZEPG5uvjvt3VDGyonwePnhJ:x3WYsfttX/u6W+aV3VDGyqhJ
Score

3^/10
behavioral19
- Target
  
  platformBinary32/bin/dt_socket.dll
- Size
  
  22KB
- MD5
  
  4364ffbb261ee133668636fbe40ff521
- SHA1
  
  cc288d1d77451ad4cc7d7c7a951ac1fc0d2da76b
- SHA256
  
  a2f595dc28b3c1b221cca4f1fec479240cd48d5c04979a81d8fc318817650fd1
- SHA512
  
  0515041abe617ef6acb6310095053544e399f55e024fad118109c80761b6293dd1daf70ea3940ae35f01202abc2ce520f23cbb49f5dc8f78f07025f3f70293c1
- SSDEEP
  
  384:Wwdi4i9u1aIVW9sYycWl5pPVykuPDGyonxhvPnhR:Hdi3lk2sYyc85pdTuPDGyKhR
Score

1^/10
behavioral20
- Target
  
  platformBinary32/bin/fontmanager.dll
- Size
  
  228KB
- MD5
  
  3300b959d9fad66d440d4ff668b281ac
- SHA1
  
  2dd8ecc38b7780caf60daf3e7b00e4f1cd2c2b12
- SHA256
  
  b02b7a45c445e107a4c64b91a0c4697dc521d47ca4f745101f36e8678be8464c
- SHA512
  
  c636cfb471242bfb547741a06d890784f66550bfa7adfe1bc9d5706f7a758edb13eb7a3aa5347dd45440ab971e7e6a5189cd671c2288e2ea070ed6e21d5be8b0
- SSDEEP
  
  6144:SH/Njq/TQtqTNRwco0k44p5xFotFGMReiDvf/OBx8M:SH/Njq/TQtqTNRwco0k44p5xIGSI
Score

1^/10
behavioral21
- Target
  
  platformBinary32/bin/freetype.dll
- Size
  
  501KB
- MD5
  
  84cae47d5baea16f854b7d1d77d406ca
- SHA1
  
  2586373f18119f33230048f2b97bf6b4d7b81a38
- SHA256
  
  ac9651655b48c5d5f8236857c2124707c9405149c83963e223d89891a93427d1
- SHA512
  
  9b1ca654e8b9009ca29375beba892d082f3f2337fa83282d0c155e8a8384b10f81ab4fc2349b33e5645b4417b6c7d931247f94eba77e2201f740367568a45966
- SSDEEP
  
  6144:JtsMcLi9OyTYBbks+XF8XbA77soR2DDlO3XAX+0oXCxYrMDHVV+arSaWsEWmfDAX:/sMcLi9O1h+r7sNHlAwX6+5kar5fEWmo
Score

3^/10
behavioral22
- Target
  
  platformBinary32/bin/hprof.dll
- Size
  
  130KB
- MD5
  
  8e07a84cd0b6bfa807d7e883070c8a09
- SHA1
  
  13f13ee5af5b5cdff31bf0c29e9e5834d25dacd5
- SHA256
  
  0d56e6e5a98f73f21ddf87aacd4cb5a28479f4c24b2539f35d4a98f97495b0cb
- SHA512
  
  e48a9429f7005f9da5cd8893a3c373f40e8d8b184fd841cc256ec2a331ca1a869fdef448b39de939d22ba05fd2dda7b60a3216ea0f1fb614cd2cfa79ab5bdb5f
- SSDEEP
  
  3072:y0V2kbLSSaDdr8814VRGx+wEG4lgb371xiEvtmqdrBFmB/GKaVyNK:LbL9q4M1DYGK6+K
Score

3^/10
behavioral23
- Target
  
  platformBinary32/bin/hsdb.exe
- Size
  
  16KB
- MD5
  
  9df6f284cbede513869f22e6f9bc7d13
- SHA1
  
  081e3025ada371bce675050dab9759ff348d808b
- SHA256
  
  76982dbe2d5823e55dd29db18a8fa8dc31cbabb44ab038f7476902b7565742b4
- SHA512
  
  f206672bc73acfaa59cb11f871ea87e3d5b726d175d13da899ed6e25c3f557e07218c25e5d7a061eda15e3ec9211223407da6e4842e34e121f54bc746cc818ea
- SSDEEP
  
  384:GpsT5cnBLOBmSHhV8bploeCncgDGyontPnhM/:Gps+nwUS/89ldCRDGy4hM/
Score

1^/10
behavioral24
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-1.pl
- Size
  
  5KB
- MD5
  
  210fca93da3cd2aa7aab223b4f6483c9
- SHA1
  
  153c8c62718162c732eda2b520aa361eed479d83
- SHA256
  
  74be0a34fa03858f3a80f7a7e0df7359d1a27185de342e5541975e53658eeb55
- SHA512
  
  d3c3a81a2924be5eb468209d02efa229d5e579b7bc1f8d6cdb5fc5b589888cdd7ec5849641e8b1405fc23d06dd0c7b30d59e0a991d036f52d74291a7e9439188
- SSDEEP
  
  96:JK+BK+nexThxmd4JD7sNG7Z/dWCjjEa5QAcreTXKrEx08zTGarFAQA1/:YAK+nexTo4b/UC0iUe91zTG4FAQA1/
Score

3^/10
behavioral25
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-2.pl
- Size
  
  4KB
- MD5
  
  0037f9d6a388db91c980351af4c03b2f
- SHA1
  
  9384a65d636944e42c0e93310dacf68dfe016782
- SHA256
  
  f0326ad672ec2278750232cc920769710972da0594f45641441a4327a555cb8e
- SHA512
  
  6ae67ad4d61ffd437c7b5b6044c6cc2c99b47619e0a7d3338322e3df1181dc66bed393a2466953e5b4eafb8d4b2fd7864e61b04479e74e0ffe1fd8d1cdc6d57e
- SSDEEP
  
  96:2Pm57RfU5dE1Yn8RA9O6vUfXDmzWyPVEjCjpHY0e3/:2O5lw8RAU0UfXalNK0xYD
Score

3^/10
behavioral26
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-3.pl
- Size
  
  5KB
- MD5
  
  a03b010aaedc90001f105b4858a4e8d1
- SHA1
  
  44191d7dfea55cf37b6b14193801c90741ebb8cf
- SHA256
  
  42c8d417fcc509864d08d42ef61a4926a17010abce6c1f06187acd931a9eeaab
- SHA512
  
  8769d8329172a6d95b99056bd0b05ccab41c9b4b9b7efe16f2fb22a3f8acbab98d273a3c6bf2e845934ed58e95a08229f0fe27f78f057ca2c3f2ad547f863145
- SSDEEP
  
  96:2Pm571ukquJN67N72vNx+y/NeFyocWiBhpWKvgnJyC5a4h7Ybt:2OauuhI9/8/X+pRvgnJR5a4h0p
Score

3^/10
behavioral27
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-4.pl
- Size
  
  14KB
- MD5
  
  33f98552fc39eba4d6db688ed8f34765
- SHA1
  
  61389d16fa5e03c44e14ebd301271225b69d254d
- SHA256
  
  83fb2d28521c56153835161c2d8a0bdf52f19a98a0d93a8570eac7c265e1cd09
- SHA512
  
  479128578f138eb8706429db3b8e9061a15580fe5a38ca7ed83f355d110357239cf814dbe7b7b75de26553b93270560a0d9be73da4ffcd4a67ea313a4f9b0081
- SSDEEP
  
  384:q+rHdaDP+mQtETs+ETaw9op0o37cWx9qwKCY1AoVIYgteut:qedk2mQtms+V6op5qPCY1qLH
Score

3^/10
behavioral28
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-5.pl
- Size
  
  10KB
- MD5
  
  ee15076a76ac45beaf0e1dd82bc02c43
- SHA1
  
  ece5553a080928419d25deede65fe86ae4fc1292
- SHA256
  
  627ed3f263422bc9a2887a5b8e81f0478a9e607864b71fcdd3bb6914b6ac9224
- SHA512
  
  51a046e7417dcd0a9d6a5d5262729d5817102e21bf303c80522b79211b45da37ea0299941982618dea885b08423f633f9e918dbc8678bfc764ff9a1416feb22c
- SSDEEP
  
  192:YAK++M6ZIOlY+kwkXicBLwkIMOqxr+tRgtB9uchd0/dtNVpv8B1p4Sn1RksOsBr:q++fyd+gdMk1O8cihi/dXLK16S1RHOs1
Score

3^/10
behavioral29
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-6.pl
- Size
  
  7KB
- MD5
  
  d324afb827bc0410b7387f2f22d14242
- SHA1
  
  bc8e494e86e41bee2ce2add6d0fe8919656a7102
- SHA256
  
  69572ff59d2f8b428fa2e5fad4c6abfaa78813b889740a0b17c3bf4ff522f2c7
- SHA512
  
  c337ade6028a734922d91e96abf87f889d57ebe825ab0a4c0d927cffb26e38558fc1c3f61ee042f423e639e60637b4b41cd436aebc054df2196868d58bcf428b
- SSDEEP
  
  192:2OkFCNbNbSdOYT7Ax0xrUhmE7OH7Vgpet+gfLTkRQi33o+:2pFCNIdO24gr9EiH7V03gfnkq+
Score

3^/10
behavioral30
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-7.pl
- Size
  
  5KB
- MD5
  
  a9f48543cf1571322f575724a0e8de35
- SHA1
  
  edaaf35c07045f0d0376202700d1d3213e42c246
- SHA256
  
  3a36e9b32c7bee100d590a31b8e622a229c6168e2fcd95dbd9fa934025e6787b
- SHA512
  
  0b7f72c4b68e78f2c73485387a3d6e0d2dc92a2298bf0f737ccf1d4bf508db1e96a164550ed7a3a0a74f99cc89d989e1d28ecd986c4f164a0b22e9760dadadc1
- SSDEEP
  
  96:2Pm57cUV8+pZmIjZ9gZdXarsspyqU0H16DN1kvZFgfqYTfTvPNLMrnSkCXeYH/:2OduEmIj8ZdKrQ0HkzkvZFO31YdCuI/
Score

3^/10
behavioral31
- Target
  
  SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-8.pl
- Size
  
  4KB
- MD5
  
  767a048eec9220ff6d1434f8a6e6bcff
- SHA1
  
  c328487ea7944dd413e6675065a4f22a8b0835eb
- SHA256
  
  ed866f146cc3cec59e01c9ec18aa62d25590c9f789ec127c4c8d29350970edeb
- SHA512
  
  4bc516c28b4d701153fec415c666f466f21aa095f6ab396cc98f84dadfb20fc60c47a6d6fe52ec43e964bc38fd1ac779e512171c6435f261710f53bdd3e7aa3a
- SSDEEP
  
  96:JK+BK+W8yWwp+sT+YEIjxVuakCSq2z50gcBXfj8dPaQnmeCwKGS4AE9Wq:YAK+DrOfOIV7kx/cd8U5e0rZlq
Score

3^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

T1222

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32