Overview

overview

10

Static

static

10

cea50794ea...90.dll

windows7_x64

1

cea50794ea...90.dll

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cea50794ea004c7f24bdf28c66c8609e5f1e60a69ddfab1e3c979712732d1890

  • Size

    76KB

  • MD5

    16b78cc4367658f585d6b55122dbff57

  • SHA1

    4757aef37a76207c434d07b11559f221fcebca50

  • SHA256

    cea50794ea004c7f24bdf28c66c8609e5f1e60a69ddfab1e3c979712732d1890

  • SHA512

    6f2e2fac3dbd9ed16fc6dc3f411212390878a09d427c3f03511420a5fbe33cf13b4a1cd796c70ed8f94ea3c88c8e9dd5a56c79de8e061c248e799365e90c54eb

Score
10/10
squirrelwaffle

Malware Config

Extracted

Family

squirrelwaffle

C2

http://pop.vicamtaynam.com/VtyiHAft

http://snsvidyapeeth.in/aXmo2Dr3

http://trinitytesttubebaby.com/QR2JvfE3Sv

http://iconskw.com/cqdPtAbZ

http://ebookchuyennganh.com/v9PMvQDxHK8W

http://alsader.net/BHdQaiQ9rt

http://avyanshglobal.com/6pYjPlqf

http://primahills-online.com/ypCiZn7tMx

http://antoniocastroycia.com.co/WHe08obY

http://apexbiotech.net/VQgunQ4t5Ue

http://vscm.in/V3tYKxDz

http://sinaloworx.co.za/3GilA8Eo3r

http://dancongnghe.xyz/yRByhX6J3REI

http://trajesuniformes.com.br/qQofZMaJm

http://fiorenzapaes.com.br/PGYpETW7

http://astetinternational.com/arW5e44Y7vzO

http://razisystem.ir/MqvvkX0cWvn

http://krishnaiti.org.in/rWA02HQY4

Signatures

  • Squirrelwaffle Payload 1 IoCs
  • Squirrelwaffle family
    squirrelwaffle

Files

  • cea50794ea004c7f24bdf28c66c8609e5f1e60a69ddfab1e3c979712732d1890
    .dll windows x86 regsvr32


    Exports