General
-
Target
177d1b68906872259d131d1614ea022870606df5f851a9eb6f04f08126b29495
-
Size
280KB
-
Sample
221125-x7p4bsab64
-
MD5
b6fd2677bf285e0e00e0dd7258488c45
-
SHA1
861432442555667b049ddaade2d4840753455685
-
SHA256
177d1b68906872259d131d1614ea022870606df5f851a9eb6f04f08126b29495
-
SHA512
1ce6f01a733b239e1e24e569be5c881d3345e3a59973f8556854823233d84e46df1ccfe217339df8706fcdc29a82f97a0c5a22ceaa767fd7f832dcacc64d5129
-
SSDEEP
6144:VzgYWoC1WkE3fDIb4Uv8vgCY1QoAaAkcl2fm9E:FeoSY3dd1Y+fvR9E
Malware Config
Targets
-
-
Target
177d1b68906872259d131d1614ea022870606df5f851a9eb6f04f08126b29495
-
Size
280KB
-
MD5
b6fd2677bf285e0e00e0dd7258488c45
-
SHA1
861432442555667b049ddaade2d4840753455685
-
SHA256
177d1b68906872259d131d1614ea022870606df5f851a9eb6f04f08126b29495
-
SHA512
1ce6f01a733b239e1e24e569be5c881d3345e3a59973f8556854823233d84e46df1ccfe217339df8706fcdc29a82f97a0c5a22ceaa767fd7f832dcacc64d5129
-
SSDEEP
6144:VzgYWoC1WkE3fDIb4Uv8vgCY1QoAaAkcl2fm9E:FeoSY3dd1Y+fvR9E
Score10/10-
NetWire RAT payload
-
Netwire
Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Drops startup file
-
Suspicious use of SetThreadContext
-