General
-
Target
Payment notification.exe
-
Size
813KB
-
Sample
210114-13bbwdre52
-
MD5
fe640ee4067329f2713d5c2ecc63ab9f
-
SHA1
33f0a12a80b686159822fce665422546a49348b5
-
SHA256
41dbe67f8521046283d43077e26d6fef8a830e94f6ad1b1765dc5056f8d81846
-
SHA512
5e16b4f3543f317d1d0b9a3134a2a71849b3b79aa324b2a52bd2ae5a62f3231292a8904dbac9019b6abe4aa03ed5f023896b3458d9d40a2e005861d10ea842a1
Static task
static1
Behavioral task
behavioral1
Sample
Payment notification.exe
Resource
win7v20201028
Malware Config
Targets
-
-
Target
Payment notification.exe
-
Size
813KB
-
MD5
fe640ee4067329f2713d5c2ecc63ab9f
-
SHA1
33f0a12a80b686159822fce665422546a49348b5
-
SHA256
41dbe67f8521046283d43077e26d6fef8a830e94f6ad1b1765dc5056f8d81846
-
SHA512
5e16b4f3543f317d1d0b9a3134a2a71849b3b79aa324b2a52bd2ae5a62f3231292a8904dbac9019b6abe4aa03ed5f023896b3458d9d40a2e005861d10ea842a1
-
NetWire RAT payload
-
Suspicious use of SetThreadContext
-