netwire | 0760810fdc8c99d629c3bbdb9baa375c3cb9a2c6e8d52d9c42941e6483cc55ef | Triage

Submit
Reports

Overview

overview

Static

static

0760810fdc...ef.exe

windows7-x64

0760810fdc...ef.exe

windows10-2004-x64

1

Sharing

General

Target

0760810fdc8c99d629c3bbdb9baa375c3cb9a2c6e8d52d9c42941e6483cc55ef
Size

218KB
Sample

221127-ayr51abe2x
MD5

9e90b8196b1979b337be4c7c24111f7f
SHA1

0834f7c90373e59abdba656e8a73502c664e7534
SHA256

0760810fdc8c99d629c3bbdb9baa375c3cb9a2c6e8d52d9c42941e6483cc55ef
SHA512

b6882e25484a12790b465161dfa7a63f8de8dc6702b36a1b2b9a1c274e3fa3cc208d62bf7c410fa7fad9cff48980fe22b82cec2e7cf6cd8cc6be7b7f3d1719db
SSDEEP

3072:XOvK93lmpPX2yKCL4Z/0BCpmSmSDByjivPPyY1GQ62VGNAj:XjMPX2yK1/qsmSmSDUuHKH/

Score

10^/10

netwire botnet rat stealer

Static task

static1

Behavioral task

behavioral1

Sample

0760810fdc8c99d629c3bbdb9baa375c3cb9a2c6e8d52d9c42941e6483cc55ef.exe

Resource

win7-20220901-en

netwire botnet rat stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

0760810fdc8c99d629c3bbdb9baa375c3cb9a2c6e8d52d9c42941e6483cc55ef.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  0760810fdc8c99d629c3bbdb9baa375c3cb9a2c6e8d52d9c42941e6483cc55ef
- Size
  
  218KB
- MD5
  
  9e90b8196b1979b337be4c7c24111f7f
- SHA1
  
  0834f7c90373e59abdba656e8a73502c664e7534
- SHA256
  
  0760810fdc8c99d629c3bbdb9baa375c3cb9a2c6e8d52d9c42941e6483cc55ef
- SHA512
  
  b6882e25484a12790b465161dfa7a63f8de8dc6702b36a1b2b9a1c274e3fa3cc208d62bf7c410fa7fad9cff48980fe22b82cec2e7cf6cd8cc6be7b7f3d1719db
- SSDEEP
  
  3072:XOvK93lmpPX2yKCL4Z/0BCpmSmSDByjivPPyY1GQ62VGNAj:XjMPX2yK1/qsmSmSDUuHKH/
Score

10^/10

netwire botnet rat stealer
- NetWire RAT payload
  rat
- Netwire
  Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.
  botnet stealer netwire
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

netwirebotnetratstealer

behavioral2

© 2018-2024

Terms | Privacy