netwire | 8ef29fdc370b4b4a07a3f077641dd33b205fd19a0a69b6a07c409689752b0264 | Triage

Submit
Reports

Overview

overview

Static

static

8ef29fdc37...64.exe

windows7_x64

8ef29fdc37...64.exe

windows10-2004_x64

Sharing

General

Target

8ef29fdc370b4b4a07a3f077641dd33b205fd19a0a69b6a07c409689752b0264
Size

209KB
Sample

220701-e9hsxsebc4
MD5

278235035db35559eed0d9882d7e83a1
SHA1

960e43094f5f3e773ee9030634bc9de14685109e
SHA256

8ef29fdc370b4b4a07a3f077641dd33b205fd19a0a69b6a07c409689752b0264
SHA512

d8e60f87199951ac1a7392b6d5e8741ca6dea76c2c7a5773cf49058457d16184099936f4e63dc3b5f23657d36c2abff8b3172c98fdfb70bac001ef347578e9bc

Score

10^/10

netwire botnet rat stealer

Static task

static1

Behavioral task

behavioral1

Sample

8ef29fdc370b4b4a07a3f077641dd33b205fd19a0a69b6a07c409689752b0264.exe

Resource

win7-20220414-en

netwire botnet rat stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

8ef29fdc370b4b4a07a3f077641dd33b205fd19a0a69b6a07c409689752b0264.exe

Resource

win10v2004-20220414-en

netwire botnet rat stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  8ef29fdc370b4b4a07a3f077641dd33b205fd19a0a69b6a07c409689752b0264
- Size
  
  209KB
- MD5
  
  278235035db35559eed0d9882d7e83a1
- SHA1
  
  960e43094f5f3e773ee9030634bc9de14685109e
- SHA256
  
  8ef29fdc370b4b4a07a3f077641dd33b205fd19a0a69b6a07c409689752b0264
- SHA512
  
  d8e60f87199951ac1a7392b6d5e8741ca6dea76c2c7a5773cf49058457d16184099936f4e63dc3b5f23657d36c2abff8b3172c98fdfb70bac001ef347578e9bc
Score

10^/10

netwire botnet rat stealer
- NetWire RAT payload
  rat
- Netwire
  Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.
  botnet stealer netwire
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

netwirebotnetratstealer

behavioral2

netwirebotnetratstealer

© 2018-2024

Terms | Privacy