General
-
Target
3be9a881eee8b8797b801d9fd13c656d05ceb4f7b379d4b1a2c6c1da285fbb8c
-
Size
344KB
-
Sample
220703-k69p5adbgn
-
MD5
03a563f89631a9bc325f71cbdf382565
-
SHA1
bf759af244cca27b368525e4e3efd6febd0763aa
-
SHA256
3be9a881eee8b8797b801d9fd13c656d05ceb4f7b379d4b1a2c6c1da285fbb8c
-
SHA512
0d1e2105356501ea9ea9d88872c102e75774d64ac839a852444b8c74f2f1734b803e524537cabbfd0da7ff326fa4850dc3303487ba2e010f82b0dab8dd4b30fe
Malware Config
Targets
-
-
Target
3be9a881eee8b8797b801d9fd13c656d05ceb4f7b379d4b1a2c6c1da285fbb8c
-
Size
344KB
-
MD5
03a563f89631a9bc325f71cbdf382565
-
SHA1
bf759af244cca27b368525e4e3efd6febd0763aa
-
SHA256
3be9a881eee8b8797b801d9fd13c656d05ceb4f7b379d4b1a2c6c1da285fbb8c
-
SHA512
0d1e2105356501ea9ea9d88872c102e75774d64ac839a852444b8c74f2f1734b803e524537cabbfd0da7ff326fa4850dc3303487ba2e010f82b0dab8dd4b30fe
Score10/10-
NetWire RAT payload
-
Netwire
Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.
-
Modifies Installed Components in the registry
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-