General

  • Target

    63f31cdf2ccc24126174d773f51b1407c1060e771ae6c5b98cc84c44c7e39509

  • Size

    132KB

  • Sample

    220217-csbxyafhe5

  • MD5

    31f5cc0713e89a20bb6ee15db97a5418

  • SHA1

    4822b3c50ec0390e7172d10bd9d4d939e5a673f8

  • SHA256

    63f31cdf2ccc24126174d773f51b1407c1060e771ae6c5b98cc84c44c7e39509

  • SHA512

    b0b6b169c00b794a2f9440275be1801a13104d499e2ca81ddb649cef2693e7bb9e416aa224f137fc084744d007107864e58878e8ac5bf654df74d9e5d8a37a88

Malware Config

Targets

    • Target

      63f31cdf2ccc24126174d773f51b1407c1060e771ae6c5b98cc84c44c7e39509

    • Size

      132KB

    • MD5

      31f5cc0713e89a20bb6ee15db97a5418

    • SHA1

      4822b3c50ec0390e7172d10bd9d4d939e5a673f8

    • SHA256

      63f31cdf2ccc24126174d773f51b1407c1060e771ae6c5b98cc84c44c7e39509

    • SHA512

      b0b6b169c00b794a2f9440275be1801a13104d499e2ca81ddb649cef2693e7bb9e416aa224f137fc084744d007107864e58878e8ac5bf654df74d9e5d8a37a88

    • NetWire RAT payload

    • Netwire

      Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks