Overview
overview
10Static
static
3wufuc_v1.0...d4.zip
windows7-x64
1wufuc/COPYING.txt
windows7-x64
1wufuc/Donate.url
windows7-x64
6wufuc/Help...se.url
windows7-x64
1wufuc/Help...ue.url
windows7-x64
1wufuc/Rest...rv.reg
windows7-x64
10wufuc/inst...uc.bat
windows7-x64
1wufuc/unin...uc.bat
windows7-x64
1wufuc/version.txt
windows7-x64
1wufuc/wufu...ub.url
windows7-x64
1wufuc/wufuc32.dll
windows7-x64
1wufuc/wufuc64.dll
windows7-x64
1wufuc/wufu...sk.xml
windows7-x64
1Analysis
-
max time kernel
120s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
25-04-2024 07:58
Static task
static1
Behavioral task
behavioral1
Sample
wufuc_v1.0.1.201-a52637d4.zip
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
wufuc/COPYING.txt
Resource
win7-20240221-en
Behavioral task
behavioral3
Sample
wufuc/Donate.url
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
wufuc/Help and Support/Latest release.url
Resource
win7-20240221-en
Behavioral task
behavioral5
Sample
wufuc/Help and Support/Report an issue.url
Resource
win7-20240220-en
Behavioral task
behavioral6
Sample
wufuc/Restore_wuauserv.reg
Resource
win7-20240215-en
Behavioral task
behavioral7
Sample
wufuc/install_wufuc.bat
Resource
win7-20231129-en
Behavioral task
behavioral8
Sample
wufuc/uninstall_wufuc.bat
Resource
win7-20240221-en
Behavioral task
behavioral9
Sample
wufuc/version.txt
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
wufuc/wufuc on GitHub.url
Resource
win7-20240221-en
Behavioral task
behavioral11
Sample
wufuc/wufuc32.dll
Resource
win7-20240221-en
Behavioral task
behavioral12
Sample
wufuc/wufuc64.dll
Resource
win7-20240220-en
Behavioral task
behavioral13
Sample
wufuc/wufuc_ScheduledTask.xml
Resource
win7-20231129-en
General
-
Target
wufuc/version.txt
-
Size
21B
-
MD5
b419a11ee4ca30e940a2c24d07637902
-
SHA1
3b5d68ce3996e32abe19af6b3a8f6d39a97f7c39
-
SHA256
64e5d99d87351823ef7c6eb19752a8e8109460509ae3710b45372a38672019bf
-
SHA512
55e2fd9023bdb5d39a50d1c3dda4b3b9f82bf0a7f025f73be1e2244a7c129e18ec894b69b2e2ded49a27014bd563ef7a93f8b05e9f7562b0b54ed4a7378d0461
Malware Config
Signatures
-
Opens file in notepad (likely ransom note) 1 IoCs
Processes:
NOTEPAD.EXEpid process 1412 NOTEPAD.EXE