Overview

overview

8

Static

static

3

CrackedWave.exe

windows10-2004-x64

8

Resubmissions

18-07-2024 12:58

240718-p7ryxszakr 10

18-07-2024 12:55

240718-p59qyssfja 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    CrackedWave.exe

  • Size

    17.7MB

  • Sample

    240718-p59qyssfja

  • MD5

    5d2ef5bc98a7c487c6a6b05a9e60db9c

  • SHA1

    ff805987e2cf3a90d09ed4a32013a6e86344768c

  • SHA256

    ecaceebf2b28b741603a75bbc8dce0f089b0d75314b2481c06534754a0e62517

  • SHA512

    2fdbafbb48cc3713121e5215015be2727398f10e76575ffea63624ee303c60fbc388f734213c1aa75537374db96538bbf23c9939e4aa71784262f1ae2adb19bf

  • SSDEEP

    393216:BfkZgLfrx0Lx8uOMpfo/nXlujARdGv4kHkzMmsW0W3WWRqusbMGCNFxHWy:lr+Lx8uOafgn1uj0dGv4fAjBZMGyFd

Score
8/10
pyinstaller

Malware Config

Targets

    • Target

      CrackedWave.exe

    • Size

      17.7MB

    • MD5

      5d2ef5bc98a7c487c6a6b05a9e60db9c

    • SHA1

      ff805987e2cf3a90d09ed4a32013a6e86344768c

    • SHA256

      ecaceebf2b28b741603a75bbc8dce0f089b0d75314b2481c06534754a0e62517

    • SHA512

      2fdbafbb48cc3713121e5215015be2727398f10e76575ffea63624ee303c60fbc388f734213c1aa75537374db96538bbf23c9939e4aa71784262f1ae2adb19bf

    • SSDEEP

      393216:BfkZgLfrx0Lx8uOMpfo/nXlujARdGv4kHkzMmsW0W3WWRqusbMGCNFxHWy:lr+Lx8uOafgn1uj0dGv4fAjBZMGyFd

    Score
    8/10
    pyinstaller

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks