Overview

overview

10

Static

static

repo.html.3.dll

windows7_x64

10

repo.html.3.dll

windows10_x64

10

Resubmissions

04-10-2021 13:41

211004-qzdxrsgde3 10

04-10-2021 13:33

211004-qtqpdagdc5 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    repo.html.3

  • Size

    475KB

  • Sample

    211004-qzdxrsgde3

  • MD5

    267aa0f6d02c470db4951b3d9b80d8f7

  • SHA1

    a9627760018699a0ce48499fd58b43e3d33c51c7

  • SHA256

    da031faf0a918be7bf90705dac2ce63cfda65226360202ac1d53a6849592e9b3

  • SHA512

    cf0ab54048b096bf05bc4f222473a962f2e18133e195165b582f041ee3b38536cc4e67a49dcc762c838aaeafcd164d63765ac42d58762db9f21217c12bc4eff6

Score
10/10
squirrelwaffledownloader

Malware Config

Extracted

Family

squirrelwaffle

C2

profitshub.in/eJDLM6siEv

hynot-adventures.com/siRmGWRAqRR

giversherbalproducts.com/lBawcxb5

opulent-imports.com/DlOBqKAf

nitro2point0.com/9SqebpSMu

streamline-trade.com/7fTwg0V7

sologicgroup.com/hWo6FObvrdp

pedroaros.cl/gnYxifRY

apimar.eu/QFm9qbfjT

baetrading.com/IfpAV6qS

ditrpshop.in/oHbAKuM0

surveillantfire.com/s6ImD3DAJs

dhananialegalaid.com/VIVB6kFar

aulaintelimundo.com/n1n3Sh4NSO08

muwatin.net/IvyhnWs8j

nkp.hr/a9TmwEDR

kvrassociates.net/Y3kzp0WtE0

marianaleyton.com/4ByNgaVdId6

Targets

    • Target

      repo.html.3

    • Size

      475KB

    • MD5

      267aa0f6d02c470db4951b3d9b80d8f7

    • SHA1

      a9627760018699a0ce48499fd58b43e3d33c51c7

    • SHA256

      da031faf0a918be7bf90705dac2ce63cfda65226360202ac1d53a6849592e9b3

    • SHA512

      cf0ab54048b096bf05bc4f222473a962f2e18133e195165b582f041ee3b38536cc4e67a49dcc762c838aaeafcd164d63765ac42d58762db9f21217c12bc4eff6

    Score
    10/10
    squirrelwaffledownloader

    • SquirrelWaffle is a simple downloader written in C++.

      SquirrelWaffle.

      downloadersquirrelwaffle

    • squirrelwaffle

      Squirrelwaffle Payload

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks