General
-
Target
WaveTrial.rar
-
Size
156.4MB
-
Sample
240409-wnzmzsdg43
-
MD5
0159c8632597db4afc30105f24cdd3ea
-
SHA1
5e80272c6ff0d820cdb0a4f98f7fbf0d558f5957
-
SHA256
0ff0224edb6a27b5c23adc7fb759864bb3c645f2cf2f38d0a0290c1fa691fdd2
-
SHA512
587e4dc7ae21036f3aaec3e99955670ef0c457fab23db79b71f0963acc79a1f2eca61b2233b6770672a139b0f8a9ae98ad65bed2431aac476fe7d4e293e666fe
-
SSDEEP
3145728:GeUQUfKvWr13d8VZDUdp27PkF5oeUahBcPVyMVob2395nOl0tUD:MKuh+DU72TkF5oeVBMX3nnptUD
Malware Config
Targets
-
-
Target
WaveTrial/Injector.exe
-
Size
3.4MB
-
MD5
c6b39ee166d5b0a2c8a9021ccd1593ae
-
SHA1
e480e7c282f64e8b0179c82afe154dd59d14217d
-
SHA256
443b665c5f545a2bdd7855f86bf70a5ee7f35eda1b6b08615161f5809cbda02b
-
SHA512
3864aea36c522ca5658412128e6a4c862a647cf3b1054b9adbe418488590a37600d7639c3eba94ca9de76f087b244b95644c667213b1122889cf2d9b7a4652d2
-
SSDEEP
49152:Kl0nJ28J4VZohYWVGGjW8NhSU7zwo8oXJ2R3KPHsI7coj2J+eNgRpqNc1a:KmnJrJ4DohYWVTJNkIZZ2R6vsmA+FDqN
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Themida packer
Detects Themida, an advanced Windows software protection system.
-
Checks whether UAC is enabled
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
-
-
Target
WaveTrial/Wave.exe
-
Size
7.0MB
-
MD5
a8bd4a6b2f1d00928e61870a5688c13d
-
SHA1
e17646d5279534f2e3eb0e0cfc8b6c536bc0c095
-
SHA256
2c51f67e236cf95e2d51df4178699da09869ab077924cff0b3df1c512878ef2f
-
SHA512
6b5175beea4071668c87b16af3177bbb2cbaff6b28909dc1e09ad5b16b449c62d6adc372a0094de627fe9835f0c474d16708c3f698355ba1664bf321fa19f5fb
-
SSDEEP
98304:37//YITF8r2n8TevxbFKVlXk34tZ+t4+aNG5Lhd+2G4Op0cN+hmdYkvsFLL:37//1xBVqvG5dQ2m0cN+hmdYkvsFLL
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/fsharp-126b7a4a.js
-
Size
3KB
-
MD5
71e06f873e607ab585e37bea1c401859
-
SHA1
c9d9060ca6f18a5c1e5375e38a1b007a78e282ed
-
SHA256
74b3476512fac818ce1fa0910f3205de3c228d926df262b7beef288e4290c306
-
SHA512
a479f7647246afc2fc2263ee5b33e61eac57772646c7da383b4448f2c7499547184ba1befc41fdbd75ed9542e538f5ae6b739e4abafcb69ef75a386a178c754d
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/go-80837ffe.js
-
Size
2KB
-
MD5
c5407d3616174112b065ee0fe3fcf97c
-
SHA1
86de4812998553557dea18b536f72edc91846146
-
SHA256
f6e8d9c16656aff5c6a0ba1f0c7949d492979f9be095f6419ff163e7cce4328c
-
SHA512
dd962a4da7ce667053d8bee5a2f5f5026b0ee5f49c4644828d11b4b7706aafb87c296ab983abbd4c8f6453e243695217cdad41acc71d0f465ec9f93db185cb0a
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/graphql-60335d07.js
-
Size
2KB
-
MD5
163a8aeb0c8054177ee335227c091a94
-
SHA1
aff5836eb30b32a1779aee9333abc070fde7735d
-
SHA256
b32d7bbac7b55d81baac73d02b7ca4626e4ef7d1f5d4d6e7ed42c85c7966e0a4
-
SHA512
4cc2a921a7c81a2b5fa55fb4c0c840cc2bd4d0c002cedceaf24a4e8567639451b8e3f2888b92bd5b5fe5ec916c95540e9cb513ba7de387e46a3cd37165a6d74f
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/handlebars-68e2cc4a.js
-
Size
6KB
-
MD5
0f47b8c168714660a1c9d8abe41ca03e
-
SHA1
2cd4b29120fab8b96c57d286a91d60a22106e0f1
-
SHA256
18633edd2c97e54d6b0af4bbc53be2e24a3de54fd8c4c6d59fde83e3179c915b
-
SHA512
11a416d056e729d152c54b178f3507c7f518a61a45db21efde9c3a463e4c933a97e4714a1c3f567ff8f7dbfb02cefb9e8e186bb179f2596e8648cbd69f1ce9d9
-
SSDEEP
96:SBc+/ErIhV1+/I/HBMB7rJKlWK2BZwIBsIwbcdg6EHpf4Og6E8S6g6EB+FpAjEhT:SBXtN6RQld2BZ1x0p4OE60+dMZLDa
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/handlebars-728a179e.js
-
Size
6KB
-
MD5
029b045d0bfaf76b820acd443fe720c1
-
SHA1
e79e80a092ff607289018e09882cd5701fca8a8e
-
SHA256
2a8b5bb1c159ea254203d8ec0837464438dcdf6ac175793a66e5ac5faad9866a
-
SHA512
b8a73736cd5255e8590b7494dc5e4d9fe7ce65c8eef31873b977e75ad596f5b0e2ea40be5498864b8cfaae8d11b50e06128ae2cc92284034738487e57c40c032
-
SSDEEP
96:nBc+/ErIhV1+/I/HBMB7rJKlWK2BZwIBsIwbcdg6EHpf4Og6E8S6g6EB+FpAjEhT:nBXtN6RQld2BZ1x0p4OE60+dMZLDa
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/handlebars-83e2dec3.js
-
Size
6KB
-
MD5
7fe7bf539a810451600a2e9841bab1dc
-
SHA1
d451730ee0a09e638d9490f22250318584cae91e
-
SHA256
cbdb18d4f60d34f830d5388d777645cca1a2b4022a079bb2b5f374f79e95b36e
-
SHA512
b61f666d32d3de752cd0a14915f53f7f1c20e62f2b76d1b959e23e02a4c0806d33125feb52194eabc3e47a7907540930b2f9a6b390cfdfcaf254f05cbbb60d5d
-
SSDEEP
96:GBc+/ErIhV1+/I/HBMB7rJKlWK2BZwIBsIwbcdg6EHpf4Og6E8S6g6EB+FpAjEhT:GBXtN6RQld2BZ1x0p4OE60+dMZLDa
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/handlebars-8c77b892.js
-
Size
6KB
-
MD5
c6d649a79ffa32b00818d4af453a7995
-
SHA1
9da05bc791a75ea9aa2bc08bd38d659b5dbd22fc
-
SHA256
e197a6c779a7006e41de6162c39538ce8c7006e0df3730c98493f9618d794f8c
-
SHA512
23c991ca96afb19a2385a9326be6d96a885a9230fa37eae3894f56cf8b0c6f2524ef7e2fa933cce95f0b2c2b3ce0fe4e1b427a3f1ab58cd58e06ecb004cfa341
-
SSDEEP
96:jBc+/ErIhV1+/I/HBMB7rJKlWK2BZwIBsIwbcdg6EHpf4Og6E8S6g6EB+FpAjEhT:jBXtN6RQld2BZ1x0p4OE60+dMZLDa
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/handlebars-b5189aa9.js
-
Size
6KB
-
MD5
fc3b39f5e26e52c623b9653abc3b28bc
-
SHA1
4fb89c0c9feeca1d04682011e003651ec237a57e
-
SHA256
ed54c75136ea3041d913fc362ad839898ee24a1aaa409fe9f45dc2cb4f1f2f39
-
SHA512
bc45a81609e6f66c8da9fc3996544d1a9fa78362b80a4ebfcbd0df0ec7da3522303635aabdf1b9c10dfaacc7121614754f8535aa56a3ae4722552ed13ce28f08
-
SSDEEP
96:eBc+/ErIhV1+/I/HBMB7rJKlWK2BZwIBsIwbcdg6EHpf4Og6E8S6g6EB+FpAjEhT:eBXtN6RQld2BZ1x0p4OE60+dMZLDa
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/handlebars-dade7c70.js
-
Size
6KB
-
MD5
b73d9bc51e43592adc5cfb90a0b0f86e
-
SHA1
7bf03faeeab844a784f7af1676b72ffd5ae97c5f
-
SHA256
9c0a2bd4c9a899772803179e6389577d48f75c23ca37e2ccc6efbd4353d8a2e8
-
SHA512
41921426fde689c54b91b9bc846cd340ea3f27cb4c8eb002533b8ff9adf5fa67d12cc8a83971ccdcdcbb91b3465991f9ed31df32ccdb01e8036c4ff17729a021
-
SSDEEP
96:ABc+/ErIhV1+/I/HBMB7rJKlWK2BZwIBsIwbcdg6EHpf4Og6E8S6g6EB+FpAjEhT:ABXtN6RQld2BZ1x0p4OE60+dMZLDa
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/hcl-e601270f.js
-
Size
3KB
-
MD5
7d6de2f7698ee58bb5c22e631ae664eb
-
SHA1
3db974603c0d966983ca5daf8835d4755288df40
-
SHA256
b5cc87e9ad43d8eed3e544f56c55dc644eb86e4900595212ace2153ea8da2a77
-
SHA512
e4b6a631fb3028af0edd992dbc0a25c5669a844e4052f22c312034e2bb9560c660632c193e13bf8a87f5756d9428482ab100009a08a7f823be60d8fc1d40fc2b
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/html-2ec9302c.js
-
Size
4KB
-
MD5
340c0d6ff22367e37aba33233baab21f
-
SHA1
816e02359dc991d7caf0d9783f4167fe1ccd24ea
-
SHA256
2ee5a6b1addcdfcf7f0989e3a96c377c06f8dc9da97ddd4fd593a16293acc76b
-
SHA512
679af1f7d48789a912fe2161409de86da292fd4e59d54307844fc242f41c2c739581f42bd933d57fff671c842018dac301aa9d702065de7d0e28862631d2f46a
-
SSDEEP
96:Nq+/Ex8I3vV1+/6mQVV1+HBzBkl0GSytHd6EHaK4T6ETYmYS6EByyEhcKMgEQEJj:NE3n+4E5yl0GSytHLaK45P8cKMN
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/html-38f03426.js
-
Size
4KB
-
MD5
c25dcda28788ec5fd2e7975b517439a4
-
SHA1
e2dc6cce55e3c51848ea346e96c9426a413e1f5c
-
SHA256
89a07d53cad4c9c9345fe9fa7e2c1914d7ea99e26ab42b6336ddcc9df47c8947
-
SHA512
c5165090a707a401048d0c344d737fb0065c7001517765cda07911c3c2bc2ab9daabac2089418182453b86d4da344cbd90dda62c13ab38d7db0895c1c0445cdd
-
SSDEEP
96:Uq+/Ex8I3vV1+/6mQVV1+HBzBkl0GSytHd6EHaK4T6ETYmYS6EByyEhcKMgEQEJj:UE3n+4E5yl0GSytHLaK45P8cKMN
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/html-4e6adffc.js
-
Size
4KB
-
MD5
4b5a3c7a86ce73851b3d1d75daadf1f8
-
SHA1
1f3b40a6f8080a0b73182c7e2e1aff491b4a75b7
-
SHA256
1b5bb903165f802fc6669f19f9b4559bdbebc06b95a585ddb33856461a334b6a
-
SHA512
96e3f045451666ee0038cde2a0dd27c6fc1aece813e9ef98ed81ba7d7aee54256dbae72caae826415c0886320a36f68aef7233a1d05fb136e96c237263994d71
-
SSDEEP
96:pq+/Ex8I3vV1+/6mQVV1+HBzBkl0GSytHd6EHaK4T6ETYmYS6EByyEhcKMgEQEJj:pE3n+4E5yl0GSytHLaK45P8cKMN
Score1/10 -
-
-
Target
WaveTrial/dist/client/assets/html-58fe1aa7.js
-
Size
4KB
-
MD5
ef670b0e7f370ed2b90666d6c908ad6e
-
SHA1
03776bce2dc8fe6bb16d5aee0b9186557807894e
-
SHA256
b442dc6bcd7f358cf5676bbd6d7e793b140f783e343232d207bf56e7bc790200
-
SHA512
556545813c1fd8bdbc4a6aab919173ce947af4001273ad0f95362617f390121c4df7a2be54c49871c19809750050f4255b2bfcb940690fe77e0f8b3cb3de71db
-
SSDEEP
96:4q+/Ex8I3vV1+/6mQVV1+HBzBkl0GSytHd6EHaK4T6ETYmYS6EByyEhcKMgEQEJj:4E3n+4E5yl0GSytHLaK45P8cKMN
Score1/10 -