Overview

overview

10

Static

static

753842efd2...b2.exe

windows7-x64

8

753842efd2...b2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    753842efd2e08e936743e8e0a2042834d53d44b7f35158be4565374c051542b2

  • Size

    5.1MB

  • Sample

    220731-hblcyacgf6

  • MD5

    9e4afe00eeccfecd3b0af3b53b3eff9d

  • SHA1

    a1189ac5ddc87a0e6b806ae757b419b0773b9f1f

  • SHA256

    753842efd2e08e936743e8e0a2042834d53d44b7f35158be4565374c051542b2

  • SHA512

    bfbd4d4e5f01acc0a617c69f884e8d748453a45463fbcdf96634cdaff86b41e670c4d1558ce05a62c09e75b02b77632b9db3ba6fc2210100aa88f1e8818cd042

Score
10/10
netwirebotnetstealerupx

Malware Config

Targets

    • Target

      753842efd2e08e936743e8e0a2042834d53d44b7f35158be4565374c051542b2

    • Size

      5.1MB

    • MD5

      9e4afe00eeccfecd3b0af3b53b3eff9d

    • SHA1

      a1189ac5ddc87a0e6b806ae757b419b0773b9f1f

    • SHA256

      753842efd2e08e936743e8e0a2042834d53d44b7f35158be4565374c051542b2

    • SHA512

      bfbd4d4e5f01acc0a617c69f884e8d748453a45463fbcdf96634cdaff86b41e670c4d1558ce05a62c09e75b02b77632b9db3ba6fc2210100aa88f1e8818cd042

    Score
    10/10
    upxnetwirebotnetstealer

    • Netwire

      Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.

      botnetstealernetwire

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops startup file

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks