General

  • Target

    6ba289f2c6c98529d0daa0f09f58847ec0e08150c813afd7447628d5b819acc2

  • Size

    1.3MB

  • MD5

    9f6d37e7b8a90d6c909a1fbe3aeaeeee

  • SHA1

    413b9e4d1b74559d2c72f5a8138597e6287c306c

  • SHA256

    6ba289f2c6c98529d0daa0f09f58847ec0e08150c813afd7447628d5b819acc2

  • SHA512

    15d300ab0ea1d32c63973adcf7d2eeaa370e7fa9ac675cbf1cc153c6e6c29b3eb231a2d6bb35f79e988ec9700d8c1634ad65d7eaade14245249df20759405f84

  • SSDEEP

    24576:Ku6J33O0c+JY5UZ+XC0kGso6Fa720W4njUprvVcC1f2o5RRfgUWYQ:8u0c++OCvkGs9Fa+rd1f26RaYQ

Score
10/10

Malware Config

Signatures

  • NetWire RAT payload 1 IoCs
  • Netwire family
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6ba289f2c6c98529d0daa0f09f58847ec0e08150c813afd7447628d5b819acc2
    .exe windows:5 windows x86 arch:x86

    eb97e4fc5518ac300a92a11673825e0b


    Headers

    Imports

    Sections