Overview

overview

8

Static

static

3

Spoofers (1).rar

windows7-x64

3

Spoofers (1).rar

windows10-2004-x64

3

Spoofers/F...er.rar

windows7-x64

3

Spoofers/F...er.rar

windows10-2004-x64

3

331865B8C33.exe

windows7-x64

1

331865B8C33.exe

windows10-2004-x64

1

VMProtectSDK64.dll

windows7-x64

1

VMProtectSDK64.dll

windows10-2004-x64

1

Spoofers/R...er.zip

windows7-x64

1

Spoofers/R...er.zip

windows10-2004-x64

1

Spoofers/U...ed.rar

windows7-x64

3

Spoofers/U...ed.rar

windows10-2004-x64

8

9670B438E96.exe

windows7-x64

1

9670B438E96.exe

windows10-2004-x64

1

Serial Che...er.exe

windows7-x64

1

Serial Che...er.exe

windows10-2004-x64

1

Serial Che...64.dll

windows7-x64

1

Serial Che...64.dll

windows10-2004-x64

1

VMProtectSDK64.dll

windows7-x64

1

VMProtectSDK64.dll

windows10-2004-x64

1

Resubmissions

02-08-2024 14:36

240802-ryvdssxgqm 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Spoofers (1).rar

  • Size

    28.3MB

  • Sample

    240802-ryvdssxgqm

  • MD5

    ba4731baab8306eedfdff7b3907b1d9a

  • SHA1

    52afbde34f9b4eb448b5968bb096f9b354fdc3c6

  • SHA256

    49453b589ffcc62183134e9f90bce44115773a0eec093b0d0b2c5494ee4ed8b9

  • SHA512

    25cf628bb26dd15fbbc19eca89cf59dafec35fcbd00e3265f6f49bc11da3be237b658e0cbd6f4695cd6d86fed293a9ae249eb834276e433d4cfaf98df6003cb5

  • SSDEEP

    786432:tWNwR36hKJpZmKzpnPdcmo1HCboh5/w4jgNLcStmU:tWNw5MYVnPymiCMW3NmU

Score
8/10
discovery

Malware Config

Targets

    • Target

      Spoofers (1).rar

    • Size

      28.3MB

    • MD5

      ba4731baab8306eedfdff7b3907b1d9a

    • SHA1

      52afbde34f9b4eb448b5968bb096f9b354fdc3c6

    • SHA256

      49453b589ffcc62183134e9f90bce44115773a0eec093b0d0b2c5494ee4ed8b9

    • SHA512

      25cf628bb26dd15fbbc19eca89cf59dafec35fcbd00e3265f6f49bc11da3be237b658e0cbd6f4695cd6d86fed293a9ae249eb834276e433d4cfaf98df6003cb5

    • SSDEEP

      786432:tWNwR36hKJpZmKzpnPdcmo1HCboh5/w4jgNLcStmU:tWNw5MYVnPymiCMW3NmU

    Score
    3/10
    behavioral1behavioral2

    • Target

      Spoofers/Full_Loader.rar

    • Size

      13.6MB

    • MD5

      01e8cd80bf48a3fc5da28e9eca5a6a3d

    • SHA1

      3807d8a454752e98f0b588f9cd0125ac138f50cb

    • SHA256

      d43da4cd2ab166af6c63e83230372a50d304626a0d6a32fac4440a681e6cd1c1

    • SHA512

      778bce8ae7e247ea28d832a064fc1bc1181211d187550abc65cd62cce1d7d44824778797b836983c40679ce22b61b9e142427607dac2cfcf8e0f751aa53a170f

    • SSDEEP

      393216:Co3Lhwt736M9wPLeJpZHGT2zKQnMMdcmo1HB:CWNwR36hKJpZmKzpnPdcmo1HB

    Score
    3/10
    behavioral3behavioral4

    • Target

      331865B8C33.exe

    • Size

      22.0MB

    • MD5

      3d409a535a3f2b168c206d0961cbd30c

    • SHA1

      6737555c1e8a7879e7751f6abdf586c04bd566af

    • SHA256

      7688212c3280222d7e7c107905b3e52e0ea581a91e17fb6648c1f8fc91c2e09d

    • SHA512

      e944edc78c5fd1f1308fc72a2f08569c0a156087bb1a465f0f1ae62999b25b4f6da1f31e1fc8ada8dd8f3832aa8742c2cfe5bf3cfad7099546713371c6e71062

    • SSDEEP

      393216:39UhQ5zzPiYfcLYnzjbLYg/GXv2pXpH9P3il/gsHoEl8h/lt8/QH:6QpKYf+CLHGm9PggsHzylt8i

    Score
    1/10
    behavioral5behavioral6

    • Target

      VMProtectSDK64.dll

    • Size

      116KB

    • MD5

      5cb50b816388efa581dc9cbf17c50f15

    • SHA1

      7f7299786f35c9658795f5739bbc14bd50f4bfe9

    • SHA256

      cd2cdc90f423c9d23ee55a242d68a1731c12cc69877de45e913646356f25b597

    • SHA512

      513ec1464a2b4222115f2590579349263487ba2d83382658b17123f7688deea915e30c29b863dca75194b7f0e0c82715c590dccd919fad4dc8f0438fac22ab03

    • SSDEEP

      3072:dmcqYHq7Aiytzg2ScpvgJcG5sqYX6UyHdlBS:40Hq7AiyegZgJZSXq9H

    Score
    1/10
    behavioral7behavioral8

    • Target

      Spoofers/RedEagleSpoofer.zip

    • Size

      939KB

    • MD5

      6885ce30b47916d5ce430ffb465e4267

    • SHA1

      3919898c58572402fba2d61896f6c43a12d81417

    • SHA256

      34ae87826dd8b2d70d0609a300e43300ea44f63718dfc6999b20a86d3b957f23

    • SHA512

      4a9a41de43b5dbf99a2d159e07d3ffff71e47473a15bf4e7c492499a2ae0d69fdfa4d4889ee33e94a0db0bfb0bebdfd4d9cec4cc27ff1f8c975627b1324af831

    • SSDEEP

      24576:j9H1Mm9xmHwTHy4kokoEsBO9M2FK+yoshJ7c09xDS:B1Mm9gHwHkaB32Fjyzm

    Score
    1/10
    behavioral10behavioral9

    • Target

      Spoofers/Unbranded.rar

    • Size

      13.8MB

    • MD5

      bfaca3571cef482d77b0a4fb6ab61ed7

    • SHA1

      a56617335195dbf3bf1ec5ec6dd486160577fa7c

    • SHA256

      cc3a76b189133d4c45ab1d302c1086612bc418b059b07baa8f36dbc207c031da

    • SHA512

      5a082ba2dbcbb942ada3c1dbd6a0f865e1bbefeb5416a9fede122bba9239189cfe8fc1d17d135e32dc0ec522580ac4216894626e78adf968d5477632ac0acd87

    • SSDEEP

      196608:x0d+soh3b5YAPXHMyi4QRD4Ksy0EIRk8T5GcOYCJL8k40RTksGDDLCeC6xS7MuYA:eboh3b5/f44Q+yC4zhvvTlGe6xStYBq

    Score
    8/10
    discovery

    • Downloads MZ/PE file

    • Executes dropped EXE

    behavioral11behavioral12

    • Target

      9670B438E96.exe

    • Size

      22.1MB

    • MD5

      a8a1b56262868880429698e5e67072e0

    • SHA1

      97b8ad2d3ac99f6e86fbd25b5c39c8aae8c2ac54

    • SHA256

      53b97a45732f6ea49433213210f4e55ac7761ac766a4656ee12c4c7181a995de

    • SHA512

      f5b3b7db90e112d85f7fcbe22be79b8ea7951014678a65ea2647a0bde2535f54719ec7e8803bcc982d5fe9cbf646fec5335e057068f3307871158d3a7b5e4cec

    • SSDEEP

      393216:h6UhQ5zzPiYfcLYnzjbLYg/GXv2pXpH9P3il/gsHoEl8h/lt8/QHQ:XQpKYf+CLHGm9PggsHzylt8iQ

    Score
    1/10
    behavioral13behavioral14

    • Target

      Serial Checker/Checker.exe

    • Size

      409KB

    • MD5

      5ae052bc0a1c37418eb07b02de4ac4ae

    • SHA1

      41be7d4bd78144784b4b35694d72c0f321f0e324

    • SHA256

      afccfaac810fbb349b1ad9c770ba8256f7f726fc2ca327d49f6f5ab0240ee265

    • SHA512

      91db77b0a6184a066430f89ce68e8ed3e6ce80d33843d4bbb07a467d9a164f63db2e3d7bcf2b32e65e890b30099f0da7c5ac28134af026f309ae9366f4391ce2

    • SSDEEP

      6144:/NTbbNcOmdeyytlrL0QRWd09EaP0LS/6SrIR+Nk04XA:V0MyyD0QRWd09L8LTSrp4

    Score
    1/10
    behavioral15behavioral16

    • Target

      Serial Checker/VMProtectSDK64.dll

    • Size

      116KB

    • MD5

      9b1d24bc903be04c449365f2df6e3373

    • SHA1

      1376b75d095638b6ad1dfc0607809963ed93abc6

    • SHA256

      eca25be34dd62a2f7c07e582bf31a3a9d7922ca2b13b4e5afb269cfde28e3d70

    • SHA512

      445e975fcc5589fabb29a66aab16e635cd11df3b1b1fff595f9534150540258ff84cd5c94b2090203457c741f85ffd12c1710553e6ea4a81c33756c02bf3a016

    • SSDEEP

      3072:jmcqYHq7Aiytzg2ScpvgJcG5sqYX6UcHblBS:y0Hq7AiyegZgJZSXU7H

    Score
    1/10
    behavioral17behavioral18

    • Target

      VMProtectSDK64.dll

    • Size

      116KB

    • MD5

      5cb50b816388efa581dc9cbf17c50f15

    • SHA1

      7f7299786f35c9658795f5739bbc14bd50f4bfe9

    • SHA256

      cd2cdc90f423c9d23ee55a242d68a1731c12cc69877de45e913646356f25b597

    • SHA512

      513ec1464a2b4222115f2590579349263487ba2d83382658b17123f7688deea915e30c29b863dca75194b7f0e0c82715c590dccd919fad4dc8f0438fac22ab03

    • SSDEEP

      3072:dmcqYHq7Aiytzg2ScpvgJcG5sqYX6UyHdlBS:40Hq7AiyegZgJZSXq9H

    Score
    1/10
    behavioral19behavioral20

MITRE ATT&CK Enterprise v15

Tasks