Overview

overview

10

Static

static

10

2228-146-0...ry.exe

windows7-x64

2228-146-0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2228-146-0x0000000000400000-0x0000000000450000-memory.dmp

  • Size

    320KB

  • Sample

    220905-qk6dgaccc6

  • MD5

    01af822caa3a61abdd6701a4f6c3244e

  • SHA1

    ac680f4eafa3d4b93c8227050512f38047a45eb1

  • SHA256

    6af84f4d6b5cd133154908655654fd2d00dfdbf2a27c49c242755bee3b74d6ea

  • SHA512

    47d6eb420ff434ea63a89b1c2e921858e235f4e6cc0d98f60a3eb38baadf6ee5ba6988cf2ba59833689b82dccc12c2d5517239590d18ad47d8798d82fd6ec4d0

  • SSDEEP

    6144:ebhnot4+sbOAtbkfHLDiT6OzR8Q0l+/NyqRKbhoXqqD8XV8B:elnot4+UwLDiT6OzR8llAgqPB

Score
10/10
netwirerat

Malware Config

Extracted

Family

netwire

C2

bigman2021.duckdns.org:3303

Attributes
  • activex_autorun

    false

  • copy_executable

    false

  • delete_original

    false

  • host_id

    HostId-%Rand%

  • lock_executable

    false

  • offline_keylogger

    false

  • password

    Password

  • registry_autorun

    false

  • use_mutex

    false

Targets

    • Target

      2228-146-0x0000000000400000-0x0000000000450000-memory.dmp

    • Size

      320KB

    • MD5

      01af822caa3a61abdd6701a4f6c3244e

    • SHA1

      ac680f4eafa3d4b93c8227050512f38047a45eb1

    • SHA256

      6af84f4d6b5cd133154908655654fd2d00dfdbf2a27c49c242755bee3b74d6ea

    • SHA512

      47d6eb420ff434ea63a89b1c2e921858e235f4e6cc0d98f60a3eb38baadf6ee5ba6988cf2ba59833689b82dccc12c2d5517239590d18ad47d8798d82fd6ec4d0

    • SSDEEP

      6144:ebhnot4+sbOAtbkfHLDiT6OzR8Q0l+/NyqRKbhoXqqD8XV8B:elnot4+UwLDiT6OzR8llAgqPB

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks