General
-
Target
79cfcf3e9d4ce94e9edd1db5df8b0a2d79dd499d9b1ecb449ae6faf46ff31543
-
Size
89KB
-
Sample
220217-aqjtnagahk
-
MD5
0b06d53ca048a920b33a1f5fa4ceca41
-
SHA1
1ee50874ede9d44c50b2e3431807b218f68db01a
-
SHA256
79cfcf3e9d4ce94e9edd1db5df8b0a2d79dd499d9b1ecb449ae6faf46ff31543
-
SHA512
ae4cee2d036794d189dd166e492547f438f833f13774f780b15e9570beb5f67f180a43d4c09949714a3dedf43e3a95d10085bc766248d07ec1667beefadb3002
Behavioral task
behavioral1
Sample
79cfcf3e9d4ce94e9edd1db5df8b0a2d79dd499d9b1ecb449ae6faf46ff31543.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
79cfcf3e9d4ce94e9edd1db5df8b0a2d79dd499d9b1ecb449ae6faf46ff31543.exe
Resource
win10v2004-en-20220112
Malware Config
Extracted
netwire
beatrizpac12.crabdance.com:3360
-
activex_autorun
false
- activex_key
-
copy_executable
false
-
delete_original
false
-
host_id
PROBANDO
- install_path
-
keylogger_dir
%AppData%\Logs\
-
lock_executable
false
- mutex
-
offline_keylogger
true
-
password
Password
-
registry_autorun
false
- startup_name
-
use_mutex
false
Targets
-
-
Target
79cfcf3e9d4ce94e9edd1db5df8b0a2d79dd499d9b1ecb449ae6faf46ff31543
-
Size
89KB
-
MD5
0b06d53ca048a920b33a1f5fa4ceca41
-
SHA1
1ee50874ede9d44c50b2e3431807b218f68db01a
-
SHA256
79cfcf3e9d4ce94e9edd1db5df8b0a2d79dd499d9b1ecb449ae6faf46ff31543
-
SHA512
ae4cee2d036794d189dd166e492547f438f833f13774f780b15e9570beb5f67f180a43d4c09949714a3dedf43e3a95d10085bc766248d07ec1667beefadb3002
Score4/10 -