General

  • Target

    WizWorm v4.zip

  • Size

    10.9MB

  • MD5

    b4fa038f7ce9f1679b6f252266e8a62d

  • SHA1

    a1fc25250eca399bf09a88f8d94b70f14e8856ec

  • SHA256

    ef04e716a8dd6267c37b6ff490de6a4de659bef8b871857876ad5ec08a45de4c

  • SHA512

    bbff148c1600ec6da041ff33043dee51dfb5c747aca4c41b5e8ac380452b71c021d95b92d1f484579070ad45b59e4bcdbf6b875264b59f01feb3efe98feecaff

  • SSDEEP

    196608:UugX/r3IWfaQ+T03StwgT9TIyjIFUMiFuInHDxpP9lDZ4SM8Y1VIif7a2mz89lUk:UugX/rOQ+T030wgTVcFInj3LDZU8UGaR

Score
10/10

Malware Config

Signatures

  • AgentTesla payload 1 IoCs
  • Agenttesla family
  • Unsigned PE 15 IoCs

    Checks for missing Authenticode signature.

Files

  • WizWorm v4.zip
    .zip
  • WizWorm v4/WizWorm v4/Background.png
    .png
  • WizWorm v4/WizWorm v4/Dynamitey.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/FastColoredTextBox.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/Fixer.bat
  • WizWorm v4/WizWorm v4/GMap.NET.Core.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/GMap.NET.WindowsForms.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/GeoIP.dat
  • WizWorm v4/WizWorm v4/Guna.UI2.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/IconExtractor.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/Intro.wav
  • WizWorm v4/WizWorm v4/MetroFramework.Design.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/MetroFramework.Fonts.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/MetroFramework.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/NAudio.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/Plugins/ActiveWindows.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/Plugins/All-In-One.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/Plugins/Chat.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/Plugins/Clipboard.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/Plugins/FileManager.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/Plugins/FileSeacher.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WizWorm v4/WizWorm v4/Plugins/HRDP.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections