Extracted

• • Target

    d9f06386725e69e44c508dd60b61dd01

  • Size

    1.2MB

  • MD5

    d9f06386725e69e44c508dd60b61dd01

  • SHA1

    9c85892fd9ef504c37df93e1a4b45523ece676f0

  • SHA256

    cf0680b4dc60d19715ec53d5346d584c0a4b32a347a7c77af542074ad8887eb0

  • SHA512

    4e879b232eae979a8cdb5fbce1028580edaaa97aaed32bea47797df8a9f0b4d1908ed446ac50929d58da9b5a329177bd0870f6c60356da146c5fe210a82814b9

  • SSDEEP

    24576:EChjf33H6kbp5626+9+F/ynxU1mx8FhOONfps+sv38s:1hj/jNL19+F/WxUnPtzs+sv38

  Score

  10^/10

  netwirebotnetratstealer

  • NetWire RAT payload

    rat

  • Netwire

    Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.

    botnetstealernetwire

  • Drops startup file

  • Loads dropped DLL

  behavioral1behavioral2