Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1f8466463d...35.dll

windows7_x64

10

1f8466463d...35.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f8466463d1cf3611b4d9438bb727fcb4d314563f124da38f886f2adbde63135

  • Size

    299KB

  • Sample

    220130-thh2yaeef2

  • MD5

    4b91c90c692b17b1a9e1ecaff66e2abd

  • SHA1

    8c42d6161e6506d06e9d0f11ea814fa087f2b2d7

  • SHA256

    1f8466463d1cf3611b4d9438bb727fcb4d314563f124da38f886f2adbde63135

  • SHA512

    7648e0968d83cd2853f5043ddd05648130ab032c732ccc75e09382e6d622572d3dd3e53cdadbe0b90e2d156b581a1b11716d39c983d5e9dd6d590372988bfd4e

Score
10/10
squirrelwaffledownloader

Malware Config

Extracted

Family

squirrelwaffle

C2

http://hutraders.com/0eeUtmJf8O

http://goodartishard.com/0JXDM9kMwx

http://now.byteinsure.com/tnjUrmlhN

http://asceaub.com/Xl8UCLSU

http://colchonesmanzur.com/GjVgBnKaNIC

http://sistemasati.com/0SzGNkx6P

http://maldivehost.net/zLIisQRWZI9

http://lrdgon.org/l7r96tjAJ

http://binnawaz.com.pk/jhSZGWS76C

http://fhstorse.com/vJlgdjJnpIop

Targets

    • Target

      1f8466463d1cf3611b4d9438bb727fcb4d314563f124da38f886f2adbde63135

    • Size

      299KB

    • MD5

      4b91c90c692b17b1a9e1ecaff66e2abd

    • SHA1

      8c42d6161e6506d06e9d0f11ea814fa087f2b2d7

    • SHA256

      1f8466463d1cf3611b4d9438bb727fcb4d314563f124da38f886f2adbde63135

    • SHA512

      7648e0968d83cd2853f5043ddd05648130ab032c732ccc75e09382e6d622572d3dd3e53cdadbe0b90e2d156b581a1b11716d39c983d5e9dd6d590372988bfd4e

    Score
    10/10
    squirrelwaffledownloader

    • SquirrelWaffle is a simple downloader written in C++.

      SquirrelWaffle.

      downloadersquirrelwaffle

    • Squirrelwaffle Payload

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks