General
-
Target
a40124b437f62aba90af59ec30355a9ab7b1dbadbf1c18e12394d053c3b7c7b9
-
Size
159KB
-
Sample
220731-lxrnmabgak
-
MD5
389eb42409ce5da14af2311a26a1e8cf
-
SHA1
0e2305cc75cf934521243b162b1b7f260407e0db
-
SHA256
a40124b437f62aba90af59ec30355a9ab7b1dbadbf1c18e12394d053c3b7c7b9
-
SHA512
45a944f6d7974e406e119e5a73b956821ccf96fe4b999cf8a351105215d27491fcd1ec6489be065f8b04f69698b758ef1302dc62699613962cd5863b096ab382
Static task
static1
Behavioral task
behavioral1
Sample
a40124b437f62aba90af59ec30355a9ab7b1dbadbf1c18e12394d053c3b7c7b9.exe
Resource
win7-20220718-en
Malware Config
Targets
-
-
Target
a40124b437f62aba90af59ec30355a9ab7b1dbadbf1c18e12394d053c3b7c7b9
-
Size
159KB
-
MD5
389eb42409ce5da14af2311a26a1e8cf
-
SHA1
0e2305cc75cf934521243b162b1b7f260407e0db
-
SHA256
a40124b437f62aba90af59ec30355a9ab7b1dbadbf1c18e12394d053c3b7c7b9
-
SHA512
45a944f6d7974e406e119e5a73b956821ccf96fe4b999cf8a351105215d27491fcd1ec6489be065f8b04f69698b758ef1302dc62699613962cd5863b096ab382
-
NetWire RAT payload
-
Drops startup file
-
Suspicious use of SetThreadContext
-