Overview

overview

10

Static

static

10

Wave.exe

windows7-x64

10

Wave.exe

windows10-2004-x64

10

d3d9.dll

windows10-2004-x64

1

d3dx9_24.dll

windows7-x64

1

d3dx9_24.dll

windows10-2004-x64

1

vcruntime140_1.dll

windows7-x64

1

vcruntime140_1.dll

windows10-2004-x64

1

Wave-Execu...se.apk

android-9-x86

Wave-Execu...se.apk

android-10-x64

Wave-Execu...se.apk

android-11-x64

Wave-Execu...er.jar

windows7-x64

1

Wave-Execu...er.jar

windows10-2004-x64

1

Wave-Execu...radlew

ubuntu-18.04-amd64

1

Wave-Execu...radlew

debian-9-armhf

1

Wave-Execu...radlew

debian-9-mips

1

Wave-Execu...radlew

debian-9-mipsel

1

Wave-Execu...ew.bat

windows7-x64

1

Wave-Execu...ew.bat

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    05-01-2025 16:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Wave-Executor-master/gradlew.bat

  • Size

    2KB

  • MD5

    b19dcfdb742582b6ccb4e0f4c77791b1

  • SHA1

    aad30867c46885fcfc019c318138b0f62fa53172

  • SHA256

    2f18fc6abd50803de7b3a225038d284268904c9d13caa6cf81f99365dc876479

  • SHA512

    9336d2e0d52322fad871f89130903c8f0a14fa6be6579f653c7959d83d0fde7a99106e7878aa3168713c0ce1a0904f72527ddca99543016dbe54d7fe109fd9eb

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 6 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\Wave-Executor-master\gradlew.bat"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2484
    • C:\Windows\system32\java.exe
      java.exe -version
      2⤵
        PID:2452
      • C:\Windows\system32\java.exe
        "java.exe" "-Dorg.gradle.appname=gradlew" -classpath "C:\Users\Admin\AppData\Local\Temp\Wave-Executor-master\\gradle\wrapper\gradle-wrapper.jar" org.gradle.wrapper.GradleWrapperMain
        2⤵
          PID:2700

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/2452-2-0x0000000002670000-0x00000000028E0000-memory.dmp

        Filesize

        2.4MB

        Download

      • memory/2452-11-0x0000000000150000-0x0000000000151000-memory.dmp

        Filesize

        4KB

        Download

      • memory/2452-12-0x0000000002670000-0x00000000028E0000-memory.dmp

        Filesize

        2.4MB

        Download

      • memory/2700-15-0x0000000002490000-0x0000000002700000-memory.dmp

        Filesize

        2.4MB

        Download

      • memory/2700-25-0x0000000000140000-0x0000000000141000-memory.dmp

        Filesize

        4KB

        Download

      • memory/2700-27-0x0000000000140000-0x0000000000141000-memory.dmp

        Filesize

        4KB

        Download

      • memory/2700-28-0x0000000002490000-0x0000000002700000-memory.dmp

        Filesize

        2.4MB

        Download