General
-
Target
b0b885d27dfdb7d0f695985db06553a7ce2db2a967fe7092d75675a08049befe
-
Size
192KB
-
Sample
221127-q81swscd22
-
MD5
7c417ad243871bc6419878e3063875b6
-
SHA1
0c86d8dc5e638a39b654acc72747dc182a20caec
-
SHA256
b0b885d27dfdb7d0f695985db06553a7ce2db2a967fe7092d75675a08049befe
-
SHA512
8604f69e7da7dbedcf706192661431c194d80decaf28284ca9014a6fb072d6af405579d82f769f2058e3cd1c3f5d09684101a78b798d2161af7e638b706b1a59
-
SSDEEP
3072:0QaHPTRd51hQzvDsrh9aQnyT5zZhR+QmJm26LZg/ljDc8XSjbOrObfP:+PT351qT4r/aQnyiJn66/tqX
Malware Config
Targets
-
-
Target
b0b885d27dfdb7d0f695985db06553a7ce2db2a967fe7092d75675a08049befe
-
Size
192KB
-
MD5
7c417ad243871bc6419878e3063875b6
-
SHA1
0c86d8dc5e638a39b654acc72747dc182a20caec
-
SHA256
b0b885d27dfdb7d0f695985db06553a7ce2db2a967fe7092d75675a08049befe
-
SHA512
8604f69e7da7dbedcf706192661431c194d80decaf28284ca9014a6fb072d6af405579d82f769f2058e3cd1c3f5d09684101a78b798d2161af7e638b706b1a59
-
SSDEEP
3072:0QaHPTRd51hQzvDsrh9aQnyT5zZhR+QmJm26LZg/ljDc8XSjbOrObfP:+PT351qT4r/aQnyiJn66/tqX
Score10/10-
NetWire RAT payload
-
Netwire
Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-