squirrelwaffle | a92a643ad0d5cefd4d922720e9a24570c54168143da0da2447edbddd7e1e233f

General

Target

a92a643ad0d5cefd4d922720e9a24570c54168143da0da2447edbddd7e1e233f
Size

391KB
Sample

220121-3b1g3sdaer
MD5

61706b402aea755ea6588f3794637fe9
SHA1

0c3ec40e7d05066caa54bd76ca155ce1d04fdf81
SHA256

a92a643ad0d5cefd4d922720e9a24570c54168143da0da2447edbddd7e1e233f
SHA512

3b74f25fff5e8ff244593383f0b073e8f3d3600b5600f887fb5210961c5c4dc4965368b3079e5d5bb30dd3cac1d42acbbf733f8e63a3f9c3c979f7704309dab8

Score

10^/10

squirrelwaffle downloader

Malware Config

Extracted

Family

squirrelwaffle

C2

http://msrsac.com/nvaaLwe9

http://u522712.gluweb.nl/n2fshwgq

http://serverplanner.com/LkkAWHLc8

http://bengali.iu.ac.bd/xNM4FTUzqRRk

http://owfix.net/NVNCI3qMl4

http://pcbsi.com.ph/IcLNSd9sO

http://enlacelaboral.com/3cKldxdt

Attributes

blocklist
94.46.179.80
206.189.205.251
88.242.66.45
36.65.102.42
85.75.110.214
93.78.214.187
87.104.3.136
207.244.91.171
49.230.88.160
91.149.252.75
91.149.252.88
92.211.109.152
178.0.250.168
178.203.145.135
88.69.16.230
95.223.77.160
99.234.62.23
2.206.105.223
84.222.8.201
89.183.239.142
93.206.148.216
5.146.132.101
77.7.60.154
45.41.106.122
45.74.72.13
74.58.152.123
88.87.68.197
211.107.25.121
109.70.100.25
185.67.82.114
207.102.138.19
204.101.161.14
193.128.108.251
111.7.100.17
111.7.100.16
74.125.210.62
74.125.210.36
104.244.74.57
185.220.101.145
185.220.101.144
185.220.101.18
185.220.100.246
185.220.101.228
185.220.100.243
185.220.101.229
185.220.101.147
185.220.102.250
94.46.179.80
206.189.205.251
178.255.172.194
84.221.205.40
155.138.242.103
178.212.98.156
85.65.32.191
31.167.184.201
88.242.66.45
36.65.102.42
203.213.127.79
85.75.110.214
93.78.214.187
204.152.81.185
183.171.72.218
168.194.101.130
87.104.3.136
92.211.196.33
197.92.140.125
207.244.91.171
49.230.88.160
196.74.16.153
91.149.252.75
91.149.252.88
92.206.15.202
82.21.114.63
92.211.109.152
178.0.250.168
178.203.145.135
85.210.36.4
199.83.207.72
86.132.134.203
88.69.16.230
99.247.129.88
37.201.195.12
87.140.192.0
88.152.185.188
87.156.177.91
99.229.57.160
95.223.77.160
88.130.54.214
99.234.62.23
2.206.105.223
94.134.179.130
84.221.255.199
84.222.8.201
89.183.239.142
87.158.21.26
93.206.148.216
5.146.132.101
77.7.60.154
95.223.75.85
162.254.173.187
50.99.254.163
45.41.106.122
99.237.13.3
45.74.72.13
108.171.64.202
74.58.152.123
216.209.253.121
88.87.68.197
211.107.25.121
109.70.100.25
185.67.82.114
207.102.138.19
204.101.161.14
193.128.108.251

Targets

- Target
  
  a92a643ad0d5cefd4d922720e9a24570c54168143da0da2447edbddd7e1e233f
- Size
  
  391KB
- MD5
  
  61706b402aea755ea6588f3794637fe9
- SHA1
  
  0c3ec40e7d05066caa54bd76ca155ce1d04fdf81
- SHA256
  
  a92a643ad0d5cefd4d922720e9a24570c54168143da0da2447edbddd7e1e233f
- SHA512
  
  3b74f25fff5e8ff244593383f0b073e8f3d3600b5600f887fb5210961c5c4dc4965368b3079e5d5bb30dd3cac1d42acbbf733f8e63a3f9c3c979f7704309dab8
Score

10^/10

squirrelwaffle downloader
- SquirrelWaffle is a simple downloader written in C++.
  SquirrelWaffle.
  downloader squirrelwaffle
- Squirrelwaffle Payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

SquirrelWaffle is a simple downloader written in C++.

Squirrelwaffle Payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2