6d214bfa186bbb39302b1d8ec3ddd57c161064f55d579983d391edea9e6036a9

Submit
Reports

Overview

overview

Static

static

SpyMax 4.0...26.apk

windows11-21h2-x64

SpyMax 4.0...28.apk

windows11-21h2-x64

SpyMax 4.0....0.exe

windows11-21h2-x64

SpyMax 4.0...et.dll

windows11-21h2-x64

SpyMax 4.0...ld.exe

windows11-21h2-x64

SpyMax 4.0...SM.dll

windows11-21h2-x64

platformBi...32.dll

windows11-21h2-x64

platformBi...ge.dll

windows11-21h2-x64

platformBi...32.dll

windows11-21h2-x64

platformBi...ge.dll

windows11-21h2-x64

platformBi...32.dll

windows11-21h2-x64

platformBi...ge.dll

windows11-21h2-x64

platformBi...ol.bat

windows11-21h2-x64

platformBi...ol.jar

windows11-21h2-x64

platformBi...ch.dll

windows11-21h2-x64

platformBi...wt.dll

windows11-21h2-x64

platformBi...db.exe

windows11-21h2-x64

platformBi...vm.dll

windows11-21h2-x64

platformBi...em.dll

windows11-21h2-x64

platformBi...et.dll

windows11-21h2-x64

platformBi...er.dll

windows11-21h2-x64

platformBi...pe.dll

windows11-21h2-x64

platformBi...of.dll

windows11-21h2-x64

platformBi...db.exe

windows11-21h2-x64

SpyMax 4.0...n-1.pl

windows11-21h2-x64

SpyMax 4.0...n-2.pl

windows11-21h2-x64

SpyMax 4.0...n-3.pl

windows11-21h2-x64

SpyMax 4.0...n-4.pl

windows11-21h2-x64

SpyMax 4.0...n-5.pl

windows11-21h2-x64

SpyMax 4.0...n-6.pl

windows11-21h2-x64

SpyMax 4.0...n-7.pl

windows11-21h2-x64

SpyMax 4.0...n-8.pl

windows11-21h2-x64

Analysis

max time kernel
91s
max time network
99s
platform
windows11-21h2_x64
resource
win11-20240412-en
resource tags

arch:x64arch:x86image:win11-20240412-enlocale:en-usos:windows11-21h2-x64system
submitted
15-04-2024 09:47

Sharing

Copy URL

Twitter E-mail

Static task

static1

spymax

4 signatures

Behavioral task

behavioral1

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/PATCH-SDK26.apk

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/PATCH-SDK28.apk

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/SpyMax 4.0.exe

Resource

win11-20240412-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/WinMM.Net.dll

Resource

win11-20240412-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Lib/Build.exe

Resource

win11-20240412-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Lib/LibGSM.dll

Resource

win11-20240412-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

platformBinary32/bin/JAWTAccessBridge-32.dll

Resource

win11-20240412-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

platformBinary32/bin/JAWTAccessBridge.dll

Resource

win11-20240412-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

platformBinary32/bin/JavaAccessBridge-32.dll

Resource

win11-20240412-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

platformBinary32/bin/JavaAccessBridge.dll

Resource

win11-20240412-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

platformBinary32/bin/WindowsAccessBridge-32.dll

Resource

win11-20240412-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

platformBinary32/bin/WindowsAccessBridge.dll

Resource

win11-20240412-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

platformBinary32/bin/apktool.bat

Resource

win11-20240412-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

platformBinary32/bin/apktool.jar

Resource

win11-20240412-en

discovery

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

platformBinary32/bin/attach.dll

Resource

win11-20240412-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

platformBinary32/bin/awt.dll

Resource

win11-20240412-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

platformBinary32/bin/clhsdb.exe

Resource

win11-20240412-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

platformBinary32/bin/client/jvm.dll

Resource

win11-20240412-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral19

Sample

platformBinary32/bin/dt_shmem.dll

Resource

win11-20240412-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

platformBinary32/bin/dt_socket.dll

Resource

win11-20240412-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

platformBinary32/bin/fontmanager.dll

Resource

win11-20240412-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

platformBinary32/bin/freetype.dll

Resource

win11-20240412-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral23

Sample

platformBinary32/bin/hprof.dll

Resource

win11-20240412-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral24

Sample

platformBinary32/bin/hsdb.exe

Resource

win11-20240412-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-1.pl

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral26

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-2.pl

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-3.pl

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral28

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-4.pl

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral29

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-5.pl

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-6.pl

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-7.pl

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral32

Sample

SpyMax 4.0 - DenQewPie/SpyMax 4.0 - THTlllroselll/res/Plugins/Android/gen-8.pl

Resource

win11-20240412-en

windows11-21h2-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

platformBinary32/bin/awt.dll
Size

1.1MB
MD5

cd0a21f0fdf44816aae899b4d5fac5af
SHA1

8bc88fe7c9ece0910aff85a7b07578047602d202
SHA256

0a6fa37644d15b6d6e89faa05522cd7c61a455b3f5fea2bc8d82d4fd881663f0
SHA512

61a774c9aa85d7ad555e31d8ee4c93ea6041b3f01bf2fcb67dd430b4daae8c68393932428b4c34e6798e9c14b04502694b95accb12bf10cdff671736d01d7005
SSDEEP

24576:vE+LI8ZMrDMnUGO7BuEdh9GBA15phfbcbq:8qGjfL

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 4828 wrote to memory of 940	4828	rundll32.exe	78
PID 4828 wrote to memory of 940	4828	rundll32.exe	78
PID 4828 wrote to memory of 940	4828	rundll32.exe	78

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\platformBinary32\bin\awt.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4828
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\platformBinary32\bin\awt.dll,#1
  2⤵
  PID:940

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads