squirrelwaffle | 2ca7fbaffd862d1aaa34661e04bae1dc6d5031da13f437d6bedddf5576aa494a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2ca7fbaffd...4a.dll

windows7_x64

2ca7fbaffd...4a.dll

windows10_x64

Sharing

General

Target

2ca7fbaffd862d1aaa34661e04bae1dc6d5031da13f437d6bedddf5576aa494a
Size

289KB
Sample

220130-s6y8dsdddl
MD5

da391abad7ba38f509a9d5f36683889b
SHA1

24190997edfb171acf805c27ef76eec837125e49
SHA256

2ca7fbaffd862d1aaa34661e04bae1dc6d5031da13f437d6bedddf5576aa494a
SHA512

21b51fb2f0332b68bc92dcda77a745c780b7cc0eb34d169247724fcfb15c22b8ca2ced0f78e800f54f609bcf335b533dd9bdc81343c38b87a6b75c3d4e881350

Score

10^/10

squirrelwaffle downloader suricata

Static task

static1

Behavioral task

behavioral1

Sample

2ca7fbaffd862d1aaa34661e04bae1dc6d5031da13f437d6bedddf5576aa494a.dll

Resource

win7-en-20211208

squirrelwaffle downloader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

2ca7fbaffd862d1aaa34661e04bae1dc6d5031da13f437d6bedddf5576aa494a.dll

Resource

win10-en-20211208

squirrelwaffle downloader suricata

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

squirrelwaffle

C2

http://hutraders.com/0eeUtmJf8O

http://goodartishard.com/0JXDM9kMwx

http://now.byteinsure.com/tnjUrmlhN

http://asceaub.com/Xl8UCLSU

http://colchonesmanzur.com/GjVgBnKaNIC

http://sistemasati.com/0SzGNkx6P

http://maldivehost.net/zLIisQRWZI9

http://lrdgon.org/l7r96tjAJ

http://binnawaz.com.pk/jhSZGWS76C

http://fhstorse.com/vJlgdjJnpIop

Targets

- Target
  
  2ca7fbaffd862d1aaa34661e04bae1dc6d5031da13f437d6bedddf5576aa494a
- Size
  
  289KB
- MD5
  
  da391abad7ba38f509a9d5f36683889b
- SHA1
  
  24190997edfb171acf805c27ef76eec837125e49
- SHA256
  
  2ca7fbaffd862d1aaa34661e04bae1dc6d5031da13f437d6bedddf5576aa494a
- SHA512
  
  21b51fb2f0332b68bc92dcda77a745c780b7cc0eb34d169247724fcfb15c22b8ca2ced0f78e800f54f609bcf335b533dd9bdc81343c38b87a6b75c3d4e881350
Score

10^/10

squirrelwaffle downloader suricata
- SquirrelWaffle is a simple downloader written in C++.
  SquirrelWaffle.
  downloader squirrelwaffle
- suricata: ET MALWARE SQUIRRELWAFFLE Loader Activity (POST)
  suricata: ET MALWARE SQUIRRELWAFFLE Loader Activity (POST)
  suricata
- Squirrelwaffle Payload
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

squirrelwaffledownloader

behavioral2

squirrelwaffledownloadersuricata

© 2018-2025

Terms | Privacy