Overview

overview

10

Static

static

3

Wave-Execu...in.zip

windows7-x64

1

Wave-Execu...in.zip

windows10-2004-x64

1

Wave-Execu...ignore

windows7-x64

3

Wave-Execu...ignore

windows10-2004-x64

3

Wave-Execu...ICENSE

windows7-x64

1

Wave-Execu...ICENSE

windows10-2004-x64

1

Wave-Execu...er.zip

windows7-x64

1

Wave-Execu...er.zip

windows10-2004-x64

1

Loader/Loader.exe

windows7-x64

10

Loader/Loader.exe

windows10-2004-x64

10

Loader/dmx...ls.dll

windows7-x64

1

Loader/dmx...ls.dll

windows10-2004-x64

1

Loader/lik...er.dll

windows10-2004-x64

1

Loader/lik...ll.mui

windows7-x64

3

Loader/lik...ll.mui

windows10-2004-x64

3

Loader/lik...ll.mui

windows7-x64

3

Loader/lik...ll.mui

windows10-2004-x64

3

Loader/lik...ll.mui

windows7-x64

3

Loader/lik...ll.mui

windows10-2004-x64

3

Loader/mqutil.dll.mui

windows7-x64

3

Loader/mqutil.dll.mui

windows10-2004-x64

3

Loader/samlib.dll

windows7-x64

1

Loader/samlib.dll

windows10-2004-x64

1

Loader/wdi.dll

windows10-2004-x64

3

Wave-Execu...DME.md

windows7-x64

3

Wave-Execu...DME.md

windows10-2004-x64

3

Wave-Execu...lt.jpg

windows7-x64

3

Wave-Execu...lt.jpg

windows10-2004-x64

4

Analysis

  • max time kernel
    444s
  • max time network
    417s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250217-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250217-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/02/2025, 14:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Wave-Executor-main/maxresdefault.jpg

  • Size

    87KB

  • MD5

    dadd119b96d8521653eb090991b0732a

  • SHA1

    7dea2df2b38dc7742cc18ca3d3b9cfb1685ffbfc

  • SHA256

    458c78f2a77751b43d8ee65cf998cd152f07c43eda0b036f85bec1adddaf56c8

  • SHA512

    44ae82dc429bff9fd802d7fffa62d90db8353182c4442a631f5dee47690e8457bc36d8fcee215cd02d08e4b61466480b629858f1075a07d672ea79035403c589

  • SSDEEP

    1536:Ftu05L4jfaMKHO2b2eoV1CnGQutzrBZQB7SXd72ODkcBQuj1DYtj+:h5L4Wb2eosnJuZBq70d73DkciutSj+

Score
4/10

Malware Config

Signatures

  • Drops file in Windows directory 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Windows\system32\mspaint.exe
    "C:\Windows\system32\mspaint.exe" "C:\Users\Admin\AppData\Local\Temp\Wave-Executor-main\maxresdefault.jpg"
    1⤵
    • Drops file in Windows directory
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:2812
  • C:\Windows\system32\svchost.exe
    C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
    1⤵
      PID:4152

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads