meduza | 9312a20e0409ada73ef119b6b26f7dae1c81e8b00a63e7b5e2358ddd8066dd46 | Triage

Submit
Reports

Overview

overview

Static

static

3

Wave.exe

windows7-x64

1

Wave.exe

windows10-2004-x64

Sharing

General

Target

Wave.exe
Size

643.7MB
Sample

241203-w1a56asrbk
MD5

4eaf2c02540aa2bb4c0b5f76e1a26ce3
SHA1

319ca954b91ed6dec2763ac9794fc51594038859
SHA256

9312a20e0409ada73ef119b6b26f7dae1c81e8b00a63e7b5e2358ddd8066dd46
SHA512

468ab4ba5502e7b2b6804302dab39a722add61873b032b468d82971b9f65ddac16d84a5386d6b9bf8b0899333c3c3e06354833a358f5294faf20595e95fb9eff
SSDEEP

98304:S57FKBSfaYFYL8AnEOp0tTbeLvam4wEn4:g8ofp8EOp0tTSvam4wA4

Score

10^/10

meduza discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Wave.exe

Resource

win7-20240729-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

Wave.exe

Resource

win10v2004-20241007-en

meduza discovery stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Extracted

Family

meduza

C2

109.107.181.162

Attributes

anti_dbg
true
anti_vm
true
build_name
6
extensions
none
grabber_max_size
1.048576e+06
links
none
port
15666
self_destruct
true

Targets

- Target
  
  Wave.exe
- Size
  
  643.7MB
- MD5
  
  4eaf2c02540aa2bb4c0b5f76e1a26ce3
- SHA1
  
  319ca954b91ed6dec2763ac9794fc51594038859
- SHA256
  
  9312a20e0409ada73ef119b6b26f7dae1c81e8b00a63e7b5e2358ddd8066dd46
- SHA512
  
  468ab4ba5502e7b2b6804302dab39a722add61873b032b468d82971b9f65ddac16d84a5386d6b9bf8b0899333c3c3e06354833a358f5294faf20595e95fb9eff
- SSDEEP
  
  98304:S57FKBSfaYFYL8AnEOp0tTbeLvam4wEn4:g8ofp8EOp0tTSvam4wA4
Score

10^/10

meduza discovery stealer
- Meduza
  Meduza is a crypto wallet and info stealer written in C++.
  stealer meduza
- Meduza Stealer payload
- Meduza family
  meduza
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

meduzadiscoverystealer

© 2018-2024

Terms | Privacy