General
-
Target
fc361bfc9536f31350c99e5bffc007477e6ac9d1bc1fee3604c8fcae39153e53
-
Size
105KB
-
Sample
221126-jbbzyacb22
-
MD5
e11591310952d9c6eeeaf88ff19432b2
-
SHA1
71bd602670f33e1f0573c6bbd15ead0992e4973f
-
SHA256
fc361bfc9536f31350c99e5bffc007477e6ac9d1bc1fee3604c8fcae39153e53
-
SHA512
e8ff1f1766d49736549a5792a613f4e9776de534c2eca1e172de29af3a94a407d568020ece86e6f6d2381c47ea23b0e3e025e1a84f4a2c651c171fb240ec9b07
-
SSDEEP
3072:gM1BjoYNXoKDIJBXJPLW1D9DOgDqK2VRNbA/6A/d:gMMYNXqBBCN9DOgOK2VzbVA/d
Static task
static1
Behavioral task
behavioral1
Sample
fc361bfc9536f31350c99e5bffc007477e6ac9d1bc1fee3604c8fcae39153e53.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
fc361bfc9536f31350c99e5bffc007477e6ac9d1bc1fee3604c8fcae39153e53.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
fc361bfc9536f31350c99e5bffc007477e6ac9d1bc1fee3604c8fcae39153e53
-
Size
105KB
-
MD5
e11591310952d9c6eeeaf88ff19432b2
-
SHA1
71bd602670f33e1f0573c6bbd15ead0992e4973f
-
SHA256
fc361bfc9536f31350c99e5bffc007477e6ac9d1bc1fee3604c8fcae39153e53
-
SHA512
e8ff1f1766d49736549a5792a613f4e9776de534c2eca1e172de29af3a94a407d568020ece86e6f6d2381c47ea23b0e3e025e1a84f4a2c651c171fb240ec9b07
-
SSDEEP
3072:gM1BjoYNXoKDIJBXJPLW1D9DOgDqK2VRNbA/6A/d:gMMYNXqBBCN9DOgOK2VzbVA/d
Score10/10-
NetWire RAT payload
-
Executes dropped EXE
-
Modifies Installed Components in the registry
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-