General
-
Target
42ceb4c68a7d4eaf87843e10856d6dab0d749cc6de525af37c94d66f942b27bd
-
Size
206KB
-
Sample
220130-smaexsdff3
-
MD5
659aa828fa92a0864b4dd1bf9feef6a8
-
SHA1
f7d5ad5957689c9617a1edfa8a1c3703ed2ce26d
-
SHA256
42ceb4c68a7d4eaf87843e10856d6dab0d749cc6de525af37c94d66f942b27bd
-
SHA512
e7ede9928dcef6530b71916d142e0970426b4bab8ae01a78c30c1a6bd4d6c0385fa14f9b5253c147532a6c688f8e8b2569fa808102b1285501e0bd53e22d1ece
Static task
static1
Behavioral task
behavioral1
Sample
42ceb4c68a7d4eaf87843e10856d6dab0d749cc6de525af37c94d66f942b27bd.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
42ceb4c68a7d4eaf87843e10856d6dab0d749cc6de525af37c94d66f942b27bd.dll
Resource
win10-en-20211208
Malware Config
Extracted
squirrelwaffle
http://hutraders.com/0eeUtmJf8O
http://goodartishard.com/0JXDM9kMwx
http://now.byteinsure.com/tnjUrmlhN
http://asceaub.com/Xl8UCLSU
http://colchonesmanzur.com/GjVgBnKaNIC
http://sistemasati.com/0SzGNkx6P
http://maldivehost.net/zLIisQRWZI9
http://lrdgon.org/l7r96tjAJ
http://binnawaz.com.pk/jhSZGWS76C
http://fhstorse.com/vJlgdjJnpIop
Targets
-
-
Target
42ceb4c68a7d4eaf87843e10856d6dab0d749cc6de525af37c94d66f942b27bd
-
Size
206KB
-
MD5
659aa828fa92a0864b4dd1bf9feef6a8
-
SHA1
f7d5ad5957689c9617a1edfa8a1c3703ed2ce26d
-
SHA256
42ceb4c68a7d4eaf87843e10856d6dab0d749cc6de525af37c94d66f942b27bd
-
SHA512
e7ede9928dcef6530b71916d142e0970426b4bab8ae01a78c30c1a6bd4d6c0385fa14f9b5253c147532a6c688f8e8b2569fa808102b1285501e0bd53e22d1ece
Score10/10-
Squirrelwaffle Payload
-
Blocklisted process makes network request
-