Extracted

• • Target

    35927a59f7571ab1f6fb11e1717f0a66_JaffaCakes118

  • Size

    87KB

  • MD5

    35927a59f7571ab1f6fb11e1717f0a66

  • SHA1

    612f67bf7871417060e14fa510039dc9afebdac7

  • SHA256

    47784ce6e7921afe4bb0022e1439c81376fe198a27586cce65c082d65408e120

  • SHA512

    86a05fecaf42d2eeb8d92644e6f524bf376fc38ca795c31f587c97294f0e8029bcc9c9c42a384d870dc5dc1420d556742fc3a62d96774d83fe82a69c3c86d90a

  • SSDEEP

    1536:Nuq+1rRSm9CPxk6BocyNJ4Qz7lAMul8RkDN5UEPV8aiSfSCJfHJbM:Nuq+1sm8Pxk6YlAMul8yDNpPVu

  Score

  10^/10

  netwirebotnetpersistenceratstealer

  • NetWire RAT payload

    rat

  • Netwire

    Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.

    botnetstealernetwire

  • Modifies Installed Components in the registry

    persistence
  behavioral1behavioral2