General
-
Target
8baf3a611ee43769383f9cbf1a8976d57d2d6e53274f7bf830509a2f31ac077c
-
Size
164KB
-
Sample
221128-v8my9agh3y
-
MD5
edf1903c50e0ac4e313da1dcf159546f
-
SHA1
fbad0a82ee70c08cd8d1a2ff9274e63bbae36ec7
-
SHA256
8baf3a611ee43769383f9cbf1a8976d57d2d6e53274f7bf830509a2f31ac077c
-
SHA512
fd1a50f2926e119b799af0f4ff8ca1a1bc1495e4d3fac19ae9710adf5f0ba5eb949ade50900445a914a1a6ba971a59fadf597be5450497b44fcca4a590f1845a
-
SSDEEP
3072:Iy0lpnsMb2tjGIUSF9bXG5EGkynXodJ1LAEfsEkpDJBHwqZ1ZYx8xE6HDQm:X0lpnsMb2tUSP3GkyiJyEUDJBHwKZYxi
Static task
static1
Behavioral task
behavioral1
Sample
8baf3a611ee43769383f9cbf1a8976d57d2d6e53274f7bf830509a2f31ac077c.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
8baf3a611ee43769383f9cbf1a8976d57d2d6e53274f7bf830509a2f31ac077c.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
8baf3a611ee43769383f9cbf1a8976d57d2d6e53274f7bf830509a2f31ac077c
-
Size
164KB
-
MD5
edf1903c50e0ac4e313da1dcf159546f
-
SHA1
fbad0a82ee70c08cd8d1a2ff9274e63bbae36ec7
-
SHA256
8baf3a611ee43769383f9cbf1a8976d57d2d6e53274f7bf830509a2f31ac077c
-
SHA512
fd1a50f2926e119b799af0f4ff8ca1a1bc1495e4d3fac19ae9710adf5f0ba5eb949ade50900445a914a1a6ba971a59fadf597be5450497b44fcca4a590f1845a
-
SSDEEP
3072:Iy0lpnsMb2tjGIUSF9bXG5EGkynXodJ1LAEfsEkpDJBHwqZ1ZYx8xE6HDQm:X0lpnsMb2tUSP3GkyiJyEUDJBHwKZYxi
Score10/10-
NetWire RAT payload
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-