netwire | 7f0d8248f9ab9ce3c044d67a677c85cf421a086da32d9756784fc820596f14ab | Triage

Submit
Reports

Overview

overview

Static

static

7f0d8248f9...ab.exe

windows7-x64

5

7f0d8248f9...ab.exe

windows10-2004-x64

Sharing

General

Target

7f0d8248f9ab9ce3c044d67a677c85cf421a086da32d9756784fc820596f14ab
Size

144KB
Sample

221028-1vvptsghf7
MD5

0c365cba15e598862209111406bf7f60
SHA1

dccffca85d86b48c87211535f829af04b08f9658
SHA256

7f0d8248f9ab9ce3c044d67a677c85cf421a086da32d9756784fc820596f14ab
SHA512

457c4dd0c0192b31e5e4cf8c61004fea6aa80a4e6dfc404cbd47ee25780dc422ca1c070e9f08f6439bd59c9cbe7e2fb4066921d4213c4dae797ab9f30cd7be57
SSDEEP

3072:1PX9R7EBKmMDhrrWjB5HRdo8g0Ec0p6LzgP+QiS:FNR7EBKPNr40/pUzu+

Score

10^/10

netwire botnet rat stealer

Static task

static1

Behavioral task

behavioral1

Sample

7f0d8248f9ab9ce3c044d67a677c85cf421a086da32d9756784fc820596f14ab.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

7f0d8248f9ab9ce3c044d67a677c85cf421a086da32d9756784fc820596f14ab.exe

Resource

win10v2004-20220812-en

netwire botnet rat stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  7f0d8248f9ab9ce3c044d67a677c85cf421a086da32d9756784fc820596f14ab
- Size
  
  144KB
- MD5
  
  0c365cba15e598862209111406bf7f60
- SHA1
  
  dccffca85d86b48c87211535f829af04b08f9658
- SHA256
  
  7f0d8248f9ab9ce3c044d67a677c85cf421a086da32d9756784fc820596f14ab
- SHA512
  
  457c4dd0c0192b31e5e4cf8c61004fea6aa80a4e6dfc404cbd47ee25780dc422ca1c070e9f08f6439bd59c9cbe7e2fb4066921d4213c4dae797ab9f30cd7be57
- SSDEEP
  
  3072:1PX9R7EBKmMDhrrWjB5HRdo8g0Ec0p6LzgP+QiS:FNR7EBKPNr40/pUzu+
Score

10^/10

netwire botnet rat stealer
- NetWire RAT payload
  rat
- Netwire
  Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.
  botnet stealer netwire
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

netwirebotnetratstealer

© 2018-2024

Terms | Privacy