General

  • Target

    Spoofing method.zip

  • Size

    8.9MB

  • MD5

    5963a1956da2453bff34701cd6ac93e1

  • SHA1

    e1235f32d31446e81d3a1881d21810206486bb2d

  • SHA256

    6a1f8cc8b6c6c425b07fb5bcbe66053d4c58090295fbdd846eca25a280a77623

  • SHA512

    bf7b469cc04e781e74881b17e311259d7f0c329e552bcc590660eae9ac64963470bde49342398df5d1ba68999e69096abf268ceb07f296520ee441a7a3f32392

  • SSDEEP

    196608:eH/pFWp0qOb7lGSa0qiU/QrMeGUe6ha0qiU/QrMeGUe6VqGw7aBeCHt9:eH/nm3c7YSak3T/hak3T/VqGw8

Score
3/10

Malware Config

Signatures

  • Unsigned PE 11 IoCs

    Checks for missing Authenticode signature.

Files

  • Spoofing method.zip
    .zip
  • Eac.gg-Spoofer-Crack-main.zip
    .zip
  • Eac.gg-Spoofer-Crack-main/EAC.sys
    .sys windows:10 windows x64 arch:x64

    5abdf27dc7eef75598dd097a2f3b7c99


    Code Sign

    Headers

    Imports

    Sections

  • Eac.gg-Spoofer-Crack-main/README.md
  • Eac.gg-Spoofer-Crack-main/command.exe
    .exe windows:6 windows x64 arch:x64

    8550b9122a4d909a8607237e7d2f9bac


    Headers

    Imports

    Sections

  • Eac.gg-Spoofer-Crack-main/mapper.exe
    .exe windows:6 windows x64 arch:x64

    dc05b941cfcf2b45155d9541b3d972b4


    Headers

    Imports

    Sections

  • Eac.gg-Spoofer-Crack-main/new.sys
    .sys windows:5 windows x64 arch:x64

    cc81a908891587ccac8059435eda4c66


    Code Sign

    Headers

    Imports

    Sections

  • Eac.gg-Spoofer-Crack-main/new1.sys
    .sys windows:10 windows x64 arch:x64

    229aa21a08a695918b7c97b4a3f5d394


    Headers

    Imports

    Sections

  • Eac.gg-Spoofer-Crack-main/vgk.sys
    .sys windows:10 windows x64 arch:x64

    a3fc15df0095a1a39e807fbd1ab75c38


    Code Sign

    Headers

    Imports

    Sections

  • GRINX64v2.zip
    .zip
  • GRINX64v2/AMIDEWIN.EXE
    .exe windows:4 windows x86 arch:x86

    e4bef79f59242df9daf28c2c8193c40e


    Headers

    Imports

    Sections

  • GRINX64v2/AMIDEWINx64.EXE
    .exe windows:6 windows x64 arch:x64

    ed928bd060b03bab412d37a11b9d26a0


    Headers

    Imports

    Sections

  • GRINX64v2/DMI16.EXE
  • GRINX64v2/DMIEDIT.EXE
    .exe windows:6 windows x64 arch:x64

    9bbd972bee7030506f62236dff565e85


    Headers

    Imports

    Sections

  • GRINX64v2/README.txt
  • GRINX64v2/UCOREDLL.DLL
    .dll windows:4 windows x86 arch:x86

    6b893ca0388ae7a60f134fafc899b16d


    Headers

    Imports

    Exports

    Sections

  • GRINX64v2/UCORESYS.SYS
    .sys windows:4 windows x86 arch:x86

    072f277c4d89044b84c482307008a355


    Code Sign

    Headers

    Imports

    Sections

  • GRINX64v2/UCOREVXD.VXD
  • GRINX64v2/UCOREW64.SYS
    .sys windows:4 windows x64 arch:x64

    0dcd262801389f839ce909cb173448e2


    Code Sign

    Headers

    Imports

    Sections

  • GRINX64v2/amifldrv64.sys
    .sys windows:6 windows x64 arch:x64

    363922cc73591e60f2af113182414230


    Code Sign

    Headers

    Imports

    Sections

  • Name_Lock_Fix.zip
    .zip
  • Name Lock Fix/.KernelSpoofer.exe
    .exe windows:6 windows x64 arch:x64

    6dbf27f4c70fe2c8ed3e0122ba75d641


    Headers

    Imports

    Sections

  • Name Lock Fix/EACSpoof.exe
    .exe windows:6 windows x64 arch:x64

    2eabe9054cad5152567f0699947a2c5b


    Headers

    Imports

    Sections

  • Name Lock Fix/EACSpoof.sys
    .sys windows:10 windows x64 arch:x64

    410b48edaf470cbb2b101861e4c35b6b


    Code Sign

    Headers

    Imports

    Sections

  • Name Lock Fix/KernelSpoofer.deps.json
  • Name Lock Fix/KernelSpoofer.dll
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Name Lock Fix/KernelSpoofer.pdb
  • Name Lock Fix/KernelSpoofer.runtimeconfig.json
  • Name Lock Fix/Unlinker/regclean.reg
  • Name Lock Fix/Unlinker/unlink.bat
  • Name Lock Fix/spoof/1.reg
  • Name Lock Fix/spoof/2.reg
  • Name Lock Fix/spoof/EACSpoof.exe
    .exe windows:6 windows x64 arch:x64

    2eabe9054cad5152567f0699947a2c5b


    Headers

    Imports

    Sections

  • Name Lock Fix/spoof/EACSpoof.sys
    .sys windows:10 windows x64 arch:x64

    410b48edaf470cbb2b101861e4c35b6b


    Code Sign

    Headers

    Imports

    Sections

  • Name Lock Fix/spoof/full.bat
  • Name Lock Fix/spoof/spoof.bat