General

  • Target

    64553e413d3b722bf9abac652867d4bfbb4855de8a60c142e9aa5f825a0c4ed2

  • Size

    76KB

  • MD5

    0814a73b80dcbf70632dc9a3c8631888

  • SHA1

    bcb4db7c8c897c2b85432ae09240a9fa843b0b0e

  • SHA256

    64553e413d3b722bf9abac652867d4bfbb4855de8a60c142e9aa5f825a0c4ed2

  • SHA512

    80e6c34abe433e0897f45d09b50060e18e01067cf71a36704e4143400a5703833d9dc3b69966e5787d30dc85f9ae970f142ab365ad1336f3734a036ff480567f

Score
10/10

Malware Config

Extracted

Family

squirrelwaffle

C2

http://pop.vicamtaynam.com/VtyiHAft

http://snsvidyapeeth.in/aXmo2Dr3

http://trinitytesttubebaby.com/QR2JvfE3Sv

http://iconskw.com/cqdPtAbZ

http://ebookchuyennganh.com/v9PMvQDxHK8W

http://alsader.net/BHdQaiQ9rt

http://avyanshglobal.com/6pYjPlqf

http://primahills-online.com/ypCiZn7tMx

http://antoniocastroycia.com.co/WHe08obY

http://apexbiotech.net/VQgunQ4t5Ue

http://vscm.in/V3tYKxDz

http://sinaloworx.co.za/3GilA8Eo3r

http://dancongnghe.xyz/yRByhX6J3REI

http://trajesuniformes.com.br/qQofZMaJm

http://fiorenzapaes.com.br/PGYpETW7

http://astetinternational.com/arW5e44Y7vzO

http://razisystem.ir/MqvvkX0cWvn

http://krishnaiti.org.in/rWA02HQY4

Signatures

  • Squirrelwaffle Payload 2 IoCs
  • Squirrelwaffle family

Files

  • 64553e413d3b722bf9abac652867d4bfbb4855de8a60c142e9aa5f825a0c4ed2
    .zip
  • d6caf64597bd5e0803f7d0034e73195e83dae370450a2e890b82f77856830167.dll
    .dll windows x86 regsvr32


    Exports