Overview

overview

10

Static

static

10

SpyNote_v6.4.rar

windows7-x64

7

SpyNote_v6.4.rar

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SpyNote_v6.4.rar

  • Size

    22.0MB

  • Sample

    241221-j9xpaswpcy

  • MD5

    84325e47432141d8440127bce6b974d0

  • SHA1

    3ffa30171e6d57af803b6fae0f8b35559bc45274

  • SHA256

    71ce71735aa47a3b1d17e1b6639aaf6213b4c284243ad5ae7bb36fa1c5c9975f

  • SHA512

    701f3573be8634d5a10d72935be0ae9a1929804e1f16634bc3ed104c1e863df14456a5b7ffb62a0c7612db506017ad672ed447ee6bd2dbf81af88caf840ae03e

  • SSDEEP

    393216:KTkHSGrRzx7bynxYnMHcBNvUqvvDY4gXX9w+ijU0UkL20tzPt/OGtgwGIR46mrn:KQHSqomnM8BNvnNga+KU0zp//RxmL

Score
10/10
spynotediscovery

Malware Config

Extracted

Family

spynote

C2

[SPY_NOTE_HOST_OK]:[SPY_NOTE_PORT_OK]

Targets

    • Target

      SpyNote_v6.4.rar

    • Size

      22.0MB

    • MD5

      84325e47432141d8440127bce6b974d0

    • SHA1

      3ffa30171e6d57af803b6fae0f8b35559bc45274

    • SHA256

      71ce71735aa47a3b1d17e1b6639aaf6213b4c284243ad5ae7bb36fa1c5c9975f

    • SHA512

      701f3573be8634d5a10d72935be0ae9a1929804e1f16634bc3ed104c1e863df14456a5b7ffb62a0c7612db506017ad672ed447ee6bd2dbf81af88caf840ae03e

    • SSDEEP

      393216:KTkHSGrRzx7bynxYnMHcBNvUqvvDY4gXX9w+ijU0UkL20tzPt/OGtgwGIR46mrn:KQHSqomnM8BNvnNga+KU0zp//RxmL

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks