General
-
Target
b61d866837ca60df01c1465e028db4c9.exe
-
Size
3.3MB
-
Sample
210113-h7zdq1radj
-
MD5
b61d866837ca60df01c1465e028db4c9
-
SHA1
53d4b6d751dcbf1cf6d8de3f8f50aedc2896d66a
-
SHA256
b6c6f8ac58b7838c87ccf2b36b2f7005c6dd86792575e1e8c7ccce30d7d6a878
-
SHA512
f02ece67642717bc55896d8802c6011e7023741583f05c09d626d326b5eba968ba3e7ccdde9c846d62389caf9ed9f6d63977fec2bd57195203f1b79cfff78070
Static task
static1
Behavioral task
behavioral1
Sample
b61d866837ca60df01c1465e028db4c9.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
b61d866837ca60df01c1465e028db4c9.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
b61d866837ca60df01c1465e028db4c9.exe
-
Size
3.3MB
-
MD5
b61d866837ca60df01c1465e028db4c9
-
SHA1
53d4b6d751dcbf1cf6d8de3f8f50aedc2896d66a
-
SHA256
b6c6f8ac58b7838c87ccf2b36b2f7005c6dd86792575e1e8c7ccce30d7d6a878
-
SHA512
f02ece67642717bc55896d8802c6011e7023741583f05c09d626d326b5eba968ba3e7ccdde9c846d62389caf9ed9f6d63977fec2bd57195203f1b79cfff78070
Score10/10-
NetWire RAT payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-