Overview

overview

10

Static

static

10

C5A6211FE9...F5.exe

windows7_x64

10

C5A6211FE9...F5.exe

windows10_x64

10

Analysis

  • max time kernel
    21s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7v20210408
  • submitted
    01-07-2021 11:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    C5A6211FE9AB12EB4D85BFB61E9495F5.exe

  • Size

    160KB

  • MD5

    c5a6211fe9ab12eb4d85bfb61e9495f5

  • SHA1

    635d8c769477ea6fe801544fcfbb50e70011a29d

  • SHA256

    cbf703cf139fbeffc482036fed72e4bcae042a92c769cbb3de5219209b56553f

  • SHA512

    96938398102e9c3d802d708c248832e5eea1ad0229c3e296d6260e3144ae9f8d916d415b800caca20655e7956cacf438ae692c254e3d10aa509d12bf46ba9d74

Score
10/10
netwirebotnetstealer

Malware Config

Signatures

  • Netwire

    Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.

    botnetstealernetwire

Processes

  • C:\Users\Admin\AppData\Local\Temp\C5A6211FE9AB12EB4D85BFB61E9495F5.exe
    "C:\Users\Admin\AppData\Local\Temp\C5A6211FE9AB12EB4D85BFB61E9495F5.exe"
    1⤵
      PID:532

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/532-59-0x0000000075FF1000-0x0000000075FF3000-memory.dmp
      Filesize

      8KB

      Download