nworm | 074189b390709282b0632112a946b1dfc0068fe5163154e066e3797e4d5bb995 | Triage

Sharing

General

Target

074189b390709282b0632112a946b1dfc0068fe5163154e066e3797e4d5bb995.bin
Size

17KB
Sample

220126-szg1jafbb7
MD5

284bd2989a3ee0f3253409fc99147f51
SHA1

3346b00562fa721b6d52fc654e6d8acbe83f1b93
SHA256

074189b390709282b0632112a946b1dfc0068fe5163154e066e3797e4d5bb995
SHA512

4a3a4f32f944203249bb8219273dc14fa5df711b6527f19c0fe374d92daf5183450469d151ed8472a8a2b4680bb973a97f5b0673eb1d35aa3efce6e027b6b338

Score

10^/10

nworm downloader worm

Malware Config

Extracted

Family

nworm

Version

v0.3.8

C2

105.158.118.152:8888

Mutex

d2dedb24

Targets

- Target
  
  074189b390709282b0632112a946b1dfc0068fe5163154e066e3797e4d5bb995.bin
- Size
  
  17KB
- MD5
  
  284bd2989a3ee0f3253409fc99147f51
- SHA1
  
  3346b00562fa721b6d52fc654e6d8acbe83f1b93
- SHA256
  
  074189b390709282b0632112a946b1dfc0068fe5163154e066e3797e4d5bb995
- SHA512
  
  4a3a4f32f944203249bb8219273dc14fa5df711b6527f19c0fe374d92daf5183450469d151ed8472a8a2b4680bb973a97f5b0673eb1d35aa3efce6e027b6b338
Score

10^/10

nworm downloader worm
- NWorm
  A TrickBot module used to propagate to vulnerable domain controllers.
  worm downloader nworm
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

nwormdownloaderworm

behavioral2

nwormdownloaderworm