f7478694042c486cf12523f93755a432188baf0e0625d0442b03307f05908456 | Triage

Submit
Reports

Overview

overview

Static

static

WizWorm v4...ed.zip

windows7-x64

1

WizWorm v4...ed.zip

windows10-2004-x64

7

Sharing

General

Target

WizWorm v4 Updated -Cracked.zip
Size

38.4MB
Sample

241122-tlnftstpdy
MD5

f21dee21d078b19e5b25239aad3576ae
SHA1

996ce235c35df69c17c617e6ad313fb808f9d47d
SHA256

f7478694042c486cf12523f93755a432188baf0e0625d0442b03307f05908456
SHA512

dd998c4526d0b97cb10a53161ce90f9a0c65f15e5971162d4b2717c88b9f8768c70b6373460dd2b44a7a5250951888562c54021d4350dfe38c97990b0a0460ee
SSDEEP

786432:1gbHG3bN5OEOLtOLTXVrHCYhKJB3qSD/lUntnPed+Gwfdp12zH+cyNS:1gbHG37ZOLtOLLVrQJdDGwd+XL1KcS

Score

10^/10

defense_evasion

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

WizWorm v4 Updated -Cracked.zip

Resource

win7-20241010-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

WizWorm v4 Updated -Cracked.zip

Resource

win10v2004-20241007-en

defense_evasion

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  WizWorm v4 Updated -Cracked.zip
- Size
  
  38.4MB
- MD5
  
  f21dee21d078b19e5b25239aad3576ae
- SHA1
  
  996ce235c35df69c17c617e6ad313fb808f9d47d
- SHA256
  
  f7478694042c486cf12523f93755a432188baf0e0625d0442b03307f05908456
- SHA512
  
  dd998c4526d0b97cb10a53161ce90f9a0c65f15e5971162d4b2717c88b9f8768c70b6373460dd2b44a7a5250951888562c54021d4350dfe38c97990b0a0460ee
- SSDEEP
  
  786432:1gbHG3bN5OEOLtOLTXVrHCYhKJB3qSD/lUntnPed+Gwfdp12zH+cyNS:1gbHG37ZOLtOLLVrQJdDGwd+XL1KcS
Score

7^/10

defense_evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

defense_evasion

© 2018-2025

Terms | Privacy