Behavioral task
behavioral1
Sample
F27164CA71AB7C3F37423A20D80B82C4.exe
Resource
win7v20210410
windows7_x64
0 signatures
0 seconds
General
-
Target
F27164CA71AB7C3F37423A20D80B82C4.exe
-
Size
160KB
-
MD5
f27164ca71ab7c3f37423a20d80b82c4
-
SHA1
234f4c22fc1e435effd208c3b8276f8e65299e57
-
SHA256
ef9d94b683a4354982f31afb73185d5d47d50b908168b0e612f7895eb4e0d757
-
SHA512
48be2da1096409aa387294b49dc3d61cee4c15f242c9f148cb062c925f0072ea814046f7c6ac1e4eb3f95f53d8dca131d48e0cdbb1fee3abd7bac46aba3c52b9
Malware Config
Extracted
Family
netwire
C2
144.91.120.8:1440
Attributes
-
activex_autorun
false
- activex_key
-
copy_executable
false
-
delete_original
false
-
host_id
HostId-%Rand%
- install_path
- keylogger_dir
-
lock_executable
false
- mutex
-
offline_keylogger
false
-
password
Password123
-
registry_autorun
false
- startup_name
-
use_mutex
false
Signatures
Files
-
F27164CA71AB7C3F37423A20D80B82C4.exe.exe windows x86