General
-
Target
test1.test
-
Size
309KB
-
Sample
210924-ze2b1ahhfl
-
MD5
3d77d7a2e2697d35b281123afe4b030c
-
SHA1
4087259179a6761e376dcfbf2e981e1c0cacc287
-
SHA256
07c7cb49350bf3c6de4193fb2eeb8dd92d6662d60393ebd483a54bac80fb0b44
-
SHA512
8c1645fa7bf81be88533e9aff8a308311f637e3d0b64244a4fa1679de53f706b9222d4bc9caa82f1340dea641d33feb3dfa3b67b2cd324a65bf570b18bf3a17c
Static task
static1
Behavioral task
behavioral1
Sample
test1.test.dll
Resource
win7-en-20210920
Behavioral task
behavioral2
Sample
test1.test.dll
Resource
win10-en-20210920
Malware Config
Extracted
squirrelwaffle
hutraders.com/0eeUtmJf8O
goodartishard.com/0JXDM9kMwx
now.byteinsure.com/tnjUrmlhN
asceaub.com/Xl8UCLSU
colchonesmanzur.com/GjVgBnKaNIC
sistemasati.com/0SzGNkx6P
maldivehost.net/zLIisQRWZI9
lrdgon.org/l7r96tjAJ
binnawaz.com.pk/jhSZGWS76C
fhstorse.com/vJlgdjJnpIop
Targets
-
-
Target
test1.test
-
Size
309KB
-
MD5
3d77d7a2e2697d35b281123afe4b030c
-
SHA1
4087259179a6761e376dcfbf2e981e1c0cacc287
-
SHA256
07c7cb49350bf3c6de4193fb2eeb8dd92d6662d60393ebd483a54bac80fb0b44
-
SHA512
8c1645fa7bf81be88533e9aff8a308311f637e3d0b64244a4fa1679de53f706b9222d4bc9caa82f1340dea641d33feb3dfa3b67b2cd324a65bf570b18bf3a17c
Score10/10-
suricata: ET MALWARE Possible SQUIRRELWAFFLE Server Response
suricata: ET MALWARE Possible SQUIRRELWAFFLE Server Response
-
suricata: ET MALWARE SQUIRRELWAFFLE Loader Activity (POST)
suricata: ET MALWARE SQUIRRELWAFFLE Loader Activity (POST)
-
suricata: ET MALWARE SQUIRRELWAFFLE Server Response
suricata: ET MALWARE SQUIRRELWAFFLE Server Response
-
squirrelwaffle
Squirrelwaffle Payload
-
Blocklisted process makes network request
-