fa34bf41ebea299fae9b8746f029351be2f213695e52001e8937327ebc7faae1 | Triage

Sharing

General

Target

WaveExcBeta.zip
Size

112.0MB
Sample

240408-t65kvaea75
MD5

e6963b56e8dc83eacc6bb43034716572
SHA1

487557427e4e9ab86408ccb83ca48e2f2f80b544
SHA256

fa34bf41ebea299fae9b8746f029351be2f213695e52001e8937327ebc7faae1
SHA512

7bb080077fe8e19227cc891a40a498342d6ce57f1153f5f73dbc1208dfbc2444068e48a8690b03e162748ece53e0a7b1c50fed950728645a35de901e38a2f103
SSDEEP

1572864:U+0nlB+vnv/CKV+p1Y59XHM+6JCVZf+6JP+BIn4iMaMcbv6Z8pG99e6In4iMaMcG:UHl+v/Cs+cDHd4q88pGy4RSjGd

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  WaveExcBeta.zip
- Size
  
  112.0MB
- MD5
  
  e6963b56e8dc83eacc6bb43034716572
- SHA1
  
  487557427e4e9ab86408ccb83ca48e2f2f80b544
- SHA256
  
  fa34bf41ebea299fae9b8746f029351be2f213695e52001e8937327ebc7faae1
- SHA512
  
  7bb080077fe8e19227cc891a40a498342d6ce57f1153f5f73dbc1208dfbc2444068e48a8690b03e162748ece53e0a7b1c50fed950728645a35de901e38a2f103
- SSDEEP
  
  1572864:U+0nlB+vnv/CKV+p1Y59XHM+6JCVZf+6JP+BIn4iMaMcbv6Z8pG99e6In4iMaMcG:UHl+v/Cs+cDHd4q88pGy4RSjGd
Score

1^/10
behavioral1 behavioral2
- Target
  
  Wave/Wave/WaveBetaLauncher.exe.lnk
- Size
  
  1KB
- MD5
  
  a5abaedc7ebe851eca8a9365b0f158b5
- SHA1
  
  b3b7f22e90266f3acfd2e3e2bb8be318d0840e53
- SHA256
  
  001ffbceabc0c851d63a2ef6a05ea9675196d4b7fead4740a6c517165343e6f4
- SHA512
  
  88377225714ea0a42ec4a9396a24f4ce077a02f2aaefa02aba0a99d58df398d911d335bb893e6bc8628fe41e1ca454ac7958611012eb493607af9fff1adfac24
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4