General

  • Target

    WaveTrial.rar

  • Size

    156.4MB

  • Sample

    240409-rntphscf6x

  • MD5

    0159c8632597db4afc30105f24cdd3ea

  • SHA1

    5e80272c6ff0d820cdb0a4f98f7fbf0d558f5957

  • SHA256

    0ff0224edb6a27b5c23adc7fb759864bb3c645f2cf2f38d0a0290c1fa691fdd2

  • SHA512

    587e4dc7ae21036f3aaec3e99955670ef0c457fab23db79b71f0963acc79a1f2eca61b2233b6770672a139b0f8a9ae98ad65bed2431aac476fe7d4e293e666fe

  • SSDEEP

    3145728:GeUQUfKvWr13d8VZDUdp27PkF5oeUahBcPVyMVob2395nOl0tUD:MKuh+DU72TkF5oeVBMX3nnptUD

Score
8/10

Malware Config

Targets

    • Target

      WaveTrial.rar

    • Size

      156.4MB

    • MD5

      0159c8632597db4afc30105f24cdd3ea

    • SHA1

      5e80272c6ff0d820cdb0a4f98f7fbf0d558f5957

    • SHA256

      0ff0224edb6a27b5c23adc7fb759864bb3c645f2cf2f38d0a0290c1fa691fdd2

    • SHA512

      587e4dc7ae21036f3aaec3e99955670ef0c457fab23db79b71f0963acc79a1f2eca61b2233b6770672a139b0f8a9ae98ad65bed2431aac476fe7d4e293e666fe

    • SSDEEP

      3145728:GeUQUfKvWr13d8VZDUdp27PkF5oeUahBcPVyMVob2395nOl0tUD:MKuh+DU72TkF5oeVBMX3nnptUD

    Score
    8/10
    • Downloads MZ/PE file

    • Sets file execution options in registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    • Target

      WaveTrial/dist/client/assets/yaml-df2b4c14.js

    • Size

      3KB

    • MD5

      46162698a3cc5945d946898ad1c6ada3

    • SHA1

      e11b7d436ed4aea9440bb160b7f0ea9501fd1fa2

    • SHA256

      81a21479c71690e84b11ba31cafc4b7e074c354fbb7ed3a2e7ce811de4e138c4

    • SHA512

      fb05006403152d6c389513817d13fd98fa80e2cfade5bd197f3f786199d0c3bdc1fa560983b51474e13bf78c5d969d58212dc0f09386683f1e56f5b07db8efef

    Score
    1/10
    • Target

      WaveTrial/dist/client/assets/yaml-f7ca1ca1.js

    • Size

      3KB

    • MD5

      a6588b5cb768753440f491fbc12f7b22

    • SHA1

      8d9118794b7b89dc60989cf8739eef505f077e04

    • SHA256

      608796df3002d2aae191cdcafec5e34f787a5fe223ce862f62e391bbeeac8c3e

    • SHA512

      ab038095c4890580ecb17df2e12fab0f585cb7328b20cdc966c3c733336063c7ea85924d4e961d9739243710d875debd889e5072fba2e44f2f264d31de2036ae

    Score
    1/10
    • Target

      WaveTrial/dist/client/assets/yaml-f8a2dd33.js

    • Size

      3KB

    • MD5

      f18dfeeb06a369b05972320bde6ba000

    • SHA1

      8e8d9dcf77309261f41d62dae279a854e456bf7a

    • SHA256

      c8ab9bd5db8aef8a460d6a881be5c787d37ac941680ed8eb0d9c975826f170ba

    • SHA512

      83d828fcf11b686f8e6793363c9eac66284a23a0040c0007b3a007795ee1b4fd7917b76b32f6acde622ecde25397d1912d2d003574ba8a93ce87b16e41600c5a

    Score
    1/10
    • Target

      WaveTrial/dist/client/index.html

    • Size

      642B

    • MD5

      dc0297e1499d6be4efc3d519623623d9

    • SHA1

      3babddcfc55a2e33f4f21bedd8d15097fe26e8dd

    • SHA256

      4988e09362697dd88b69e9185f884145ac1b939c1e883855dad7b80479465c17

    • SHA512

      7dbcdcf74a4569b2d188b5ffca867db82acaddabf3c7ba184c62250cbcc375475f31a89607d799021be918dfdf76b5b7a215a87e1a7a157a433f1b8c21f5f61b

    Score
    1/10
    • Target

      WaveTrial/dist/node.exe

    • Size

      66.0MB

    • MD5

      f2cafe66652424d7e6512334e63b7f96

    • SHA1

      6f025a432d596a7cce8bd7a70f335504d11e8b4d

    • SHA256

      ea392e1b5503f2294c24f2ff17a01471faab98c3ec67d75df5754bb6ee0a7b71

    • SHA512

      11370e1b8400d08d24ac8f76c4a839f52bd72ef0d6fa472b0c81b67d56b3786c2962e08f29bb150d8bb57ca8579ee5aa4cae18ee4e42098dd21f6268903d79e1

    • SSDEEP

      393216:vdIDovVNzrl00adQk/VYSgvodtlMmskNk3w0GyVMA0+Qu58EISEhoIaE2FShp3Fp:vdJUxzk5bQxhhUOHESrxBxOWL/

    Score
    1/10
    • Target

      WaveTrial/dist/server/index.js

    • Size

      1.1MB

    • MD5

      ec10dcf5055923fbfb484a5da24b8705

    • SHA1

      520a15bf1a691c17619aa2752f2c28803d9be065

    • SHA256

      265981a055949af0e5497e5ff677c8c404f60b82e1051df106d871dc6b476e73

    • SHA512

      30485ea7ae0ca770275793873f6e5f5f658fd9d02345574152c49d3b2c48c0a56edfca074e04066eefcde6c340a94e1c7bf305068a4be00c48e40537f118d2ce

    • SSDEEP

      12288:znenmgaIgUpEqBeO/UmPpM/sYDmatEyuxOAcOe3ZQQT:znqY5qLuwcuhgQQT

    Score
    1/10
    • Target

      WaveTrial/dist/shared/bin/en-us.json

    • Size

      5.5MB

    • MD5

      de2ac61fe7207c1b2f304b05fae4e39f

    • SHA1

      72a4623fde7103eebcff4a55ccb8eb6acf6bbee8

    • SHA256

      c8dd69f4f8f07ebe1c73a433bbf08f67e3bef3047c35251a243c3ac78f500647

    • SHA512

      4d0be337f5d6f760fef3f79d14ef6835045e12e7eef5cf906a5f73841b01bd59d3171c31f63de34e5b44f791d5912f940fa391d96685532e0baeb7613526f8a8

    • SSDEEP

      24576:xFxk0tadFplqZ8tb2xDMKUJHBg4wq96e/o:/Z4Bg4wq96e/o

    Score
    3/10
    • Target

      WaveTrial/dist/shared/bin/globalTypes.d.luau

    • Size

      418KB

    • MD5

      4fb046cf2752a7e38784b9c223fc749a

    • SHA1

      ec60cb7dca1a73001cffbcf858ec0a8714dbca1a

    • SHA256

      89259d80bd757a1d0a5b47b5c7eac1d8f84071d71b49049dd49a37ef8dee727c

    • SHA512

      763d7d904ae606b2e9692b46d5c18bab98eecd6973330f223da738f74f918530729df0ea8d91b976fc2787592d469c187bc027ad142dc5cef0d7b615948c7e13

    • SSDEEP

      6144:siqczXlabtPJQc3zJqjFY/OSRlXAR6fTU4Dx0YvDr7YuHqkZhCd6dFyDWro/1SXB:SJQc3zJ5Dx+0

    Score
    3/10
    • Target

      WaveTrial/dist/shared/bin/wave-luau.exe

    • Size

      3.4MB

    • MD5

      12fd29fcaf6f6518b8bf9e976928fa38

    • SHA1

      1f9352e217518eaceefdd041e3f085ffbb93acb0

    • SHA256

      d38d6297b4653f30397b7f45964ed99a70c8ab73d60063f68d3380c309e626a4

    • SHA512

      b0c5bfb87639585564915f284ecff5af7e6664097ea3d9df6908c08ce09f9f6c31912225620bb7f7cf818efd6a7146280ce37e10ca7fb55bd381b95bb8a2189b

    • SSDEEP

      49152:EIo5oIIIVWVNNNNNPpXqyJh0jtX6YNimufCiZ8ylLyfMAXyDiw1P6bNi/xeLZQpV:2hugpuTcdyPs+GJH/

    Score
    1/10
    • Target

      WaveTrial/dist/shared/bin/wave.d.luau

    • Size

      4KB

    • MD5

      ec1e22fcdb56c0027ebc8cc4de1d0e64

    • SHA1

      01c3295445117957e0aa1facbd2538d68b600c78

    • SHA256

      65f300099bb14dc2ff2e2fc3a3ebda335d16433c08e317eeb4673cf106ed34a3

    • SHA512

      090c6fa8ad2b0d1e8b4dd5d42759b6ee56e96786da9d7aba34040bf3daf5ca8c5d00c9cc10cd4b84e3ebe023b2c5550c237207902a29afa9bd9dd38757c93017

    • SSDEEP

      48:1BBj5GSCuv70v7xGs7OU8q47BD4B8yp5x4pbpweqY+tYmPFYknFYE7Vf52+n+iQh:/uBfCDSTEUVldH/q

    Score
    3/10
    • Target

      WaveTrial/dist/shared/configuration/default.json

    • Size

      57B

    • MD5

      e42f1d887517cfd8a654c536615fc28a

    • SHA1

      7d4a21dedca4cd4dfa536e01f71273fcd40f5022

    • SHA256

      b965cc02dce6f970fd577ade571fc6b7af6e50d9064c15078a51af8497eb5211

    • SHA512

      2258265368006694dd80fe660bacafebe1f2105473073bdd7c0bcd51f2da62b197724c196fde659e4ca46608d3fa5bb664ac1e1b31bcd58439b366f1564f538c

    Score
    3/10
    • Target

      WaveTrial/dist/shared/en-us.json

    • Size

      5.5MB

    • MD5

      de2ac61fe7207c1b2f304b05fae4e39f

    • SHA1

      72a4623fde7103eebcff4a55ccb8eb6acf6bbee8

    • SHA256

      c8dd69f4f8f07ebe1c73a433bbf08f67e3bef3047c35251a243c3ac78f500647

    • SHA512

      4d0be337f5d6f760fef3f79d14ef6835045e12e7eef5cf906a5f73841b01bd59d3171c31f63de34e5b44f791d5912f940fa391d96685532e0baeb7613526f8a8

    • SSDEEP

      24576:xFxk0tadFplqZ8tb2xDMKUJHBg4wq96e/o:/Z4Bg4wq96e/o

    Score
    3/10
    • Target

      WaveTrial/dist/shared/globalTypes.d.luau

    • Size

      430KB

    • MD5

      a692690d37ead9365e4c92a145d7e554

    • SHA1

      ddff78ba3c227adcedb0ad6f727594d9f496707f

    • SHA256

      785c8a1755f03d35fc4336c9bd611162f3a845d33dfbccd6cd6c66b69647aa8a

    • SHA512

      b427ad84bb25f7a5a6b40071e412e8ce90c8a9d0a8f09c5d4986fb29ba2e6de2d7052bfc13ee569bd080f1d5082f1fa9c277debec08283bf9650889e4f6c9c48

    • SSDEEP

      6144:saaXnoQC9fdNKoL1D8TYqEJ75ZimGDyW3eoHeW+lZHtJnbbbwJcwd7D7:vaXnoQC9fzD8ZZ

    Score
    3/10
    • Target

      WaveTrial/dist/shared/themes/oneDark.json

    • Size

      46KB

    • MD5

      0dce182167902b3acd7f4dfb40c34008

    • SHA1

      8d01295c8fbf0234a9c566e2b6b5ca3b6b7117ac

    • SHA256

      bfd5d43a1b3e2db7372ec27cf97db5003e9cc30359499cd6c8a4676a540b2f45

    • SHA512

      171b2402b3871a84466faf06b53f7e1a8a543651e212297ecd4fcbff3ddce6c3ef1548f25befcf3d3652669ab5148ed7ca3e911ddf626ec94802b4790216ea31

    • SSDEEP

      384:KYiTCLvHL/tAAIKvkZQphffe+GzNpaq5If5fgvGR6ZXHVHurFUzntZ2SsHhNzk5V:XLfgKvkZQphffe+GzNCOvJZXHznth5V

    Score
    3/10
    • Target

      WaveTrial/dist/shared/wave-luau.exe

    • Size

      3.4MB

    • MD5

      ea9177735cde86b5acbd149795c2c28d

    • SHA1

      83eeb9a45fdedb0ba08bf18854a0cb7a33e8cfaf

    • SHA256

      3e435ffccc94d3bc915476654179430585517fa94b16fdf040b7de96ac30fdd8

    • SHA512

      5227dcef88a72837d60faa73505c6700b7e07416eb4d178cbfb8f60564860ed897127a9ae20e1980ce9f2782dd467d977cc76c40e4aa7161f3defe95899379c7

    • SSDEEP

      49152:IIo5oIIIpXiWyNNNNNO6kcWrVB1tcerNq+RWCifk8S3L9BO+uSUOXY9Z17N29UvB:+wQiUREezI9gfT

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks