Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

Spoofer-1....32.exe

windows10-2004-x64

8

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI..._3.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$SYSDIR/Packet.dll

windows10-2004-x64

1

$SYSDIR/pthreadVC.dll

windows10-2004-x64

1

$SYSDIR/wpcap.dll

windows10-2004-x64

1

WinPcapInstall.dll

windows10-2004-x64

3

rpcapd.exe

windows10-2004-x64

1

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...86.exe

windows10-2004-x64

7

firewall.vbs

windows10-2004-x64

1

restore.exe

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

scamper.exe

windows10-2004-x64

1

spoofer-cli.exe

windows10-2004-x64

1

spoofer-gui.exe

windows10-2004-x64

1

spoofer-prober.exe

windows10-2004-x64

1

spoofer-scheduler.exe

windows10-2004-x64

1

uninstall.exe

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Spoofer-1.4.12-win32.exe

  • Size

    16.4MB

  • MD5

    190f8d40317a803cc9f85dc556dc5e5a

  • SHA1

    d30e05e0d45e3317718872b938b3f4bec68629bd

  • SHA256

    aa7f639048e93e2a842f94d592dcc4334d16dd583fe849cc88bbb97f5f0b8997

  • SHA512

    fb7bf3b4e658db6de607670907e8089bca5898f9c3f6e9e31ec9c29afc5af26cde388935cee60f41ec3836c7f90c6caa78c785bfdc23e497a1ee99c0a374d80a

  • SSDEEP

    393216:m6NDjZxu6GiVEBqFz8BMK5rV123ebF7JAzfI88+PXGPd/Do:3ZhGi8qp8BM2rVAuZ2ImiDo

Score
3/10

Malware Config

Signatures

  • Unsigned PE 10 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 8 IoCs
    installer

Files

  • Spoofer-1.4.12-win32.exe
    .exe windows:4 windows x86 arch:x86

    4f67aeda01a0484282e8c59006b0b352


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/WinPcap_4_1_3.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/bootOptions.ini
  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $SYSDIR/Packet.dll
    .dll windows:4 windows x86 arch:x86

    19fa7010cacd16ef346ea8bbc2e8b999


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $SYSDIR/pthreadVC.dll
    .dll windows:4 windows x86 arch:x86

    90ee61357770484e2d085958b94141a3


    Headers

    Imports

    Exports

    Sections

  • $SYSDIR/wpcap.dll
    .dll windows:4 windows x86 arch:x86

    10dce091d63eed72dc0010ebc8838f6a


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • WinPcapInstall.dll
    .dll windows:4 windows x86 arch:x86

    ad1fff2efc5a1aa2884d5c780a51aa99


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • rpcapd.exe
    .exe windows:4 windows x86 arch:x86

    2b9e73ff502840fe6b381682c42d43cf


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    ddbd50fe6279559edf7d1f1d89b42c2c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    46f8b6973f33717335c0f6d8087de67b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/vc2012u4redist_x86.exe
    .exe windows:5 windows x86 arch:x86

    33c6db41ca15b47cfcec52de6c2ab2b7


    Code Sign

    Headers

    Imports

    Sections

  • CHANGES.txt
  • LICENSE.txt
  • README.txt
  • THANKS.txt
  • firewall.vbs
    .vbs
  • restore.exe
    .exe windows:4 windows x86 arch:x86

    4f67aeda01a0484282e8c59006b0b352


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    46f8b6973f33717335c0f6d8087de67b


    Headers

    Imports

    Exports

    Sections

  • scamper.exe
    .exe windows:4 windows x86 arch:x86

    3557cbc8488482ccd4b1d5378ba79fc0


    Headers

    Imports

    Sections

  • spoofer-cli.exe
    .exe windows:4 windows x86 arch:x86

    dfb46229e51aa0ec626cee3a0617711f


    Code Sign

    Headers

    Imports

    Sections

  • spoofer-gui.exe
    .exe windows:4 windows x86 arch:x86

    bd5cd8a5e64f2d9a7df90542ad347792


    Code Sign

    Headers

    Imports

    Sections

  • spoofer-prober.exe
    .exe windows:4 windows x86 arch:x86

    7092b24b6198be92c69fdbe7a1e2ce05


    Code Sign

    Headers

    Imports

    Sections

  • spoofer-scheduler.exe
    .exe windows:4 windows x86 arch:x86

    58f2333a67c2367366a654fab0014bb0


    Code Sign

    Headers

    Imports

    Sections

  • uninstall.exe
    .exe windows:4 windows x86 arch:x86

    4f67aeda01a0484282e8c59006b0b352


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    ddbd50fe6279559edf7d1f1d89b42c2c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    46f8b6973f33717335c0f6d8087de67b


    Headers

    Imports

    Exports

    Sections