Overview

overview

8

Static

static

7

spoofer/(d...ix.bat

windows7-x64

3

spoofer/(d...ix.bat

windows10-2004-x64

8

spoofer/av...er.exe

windows7-x64

7

spoofer/av...er.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    av-spoofer.rar

  • Size

    8.4MB

  • MD5

    59fe18ff37b63318265723e39953dc96

  • SHA1

    a4a7e7f967a1c6d2aa90af1d14e6211025e91673

  • SHA256

    b22fa118336fb1e4c0c5cb9c091ac34cf9e9d9abf15b707811c1917fdbc8142b

  • SHA512

    4bff84d5604816b9bd1710b5658a92c35e97ca29eef7630dd9ce68dba749ac0af6ec5f9fef86bc59e2874f543522ba3205e8974c01b67397d7119f682a397845

  • SSDEEP

    196608:MPUAiIUgQQGVpTs6pO27QN7py+NACh3htbZZmsNDkwhseYYZ:MPUbbZVpTcNVy+NXhxL/D/jB

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • av-spoofer.rar
    .rar

    Password: avhook

  • spoofer/(dll fix)/dll-fix.bat
  • spoofer/(dll fix)/read me.txt
  • spoofer/av-spoofer.exe
    .exe windows:6 windows x64 arch:x64

    Password: avhook

    90660baa701e3bc932189a982a869cf8


    Headers

    Imports

    Sections