netwire | e55d6c6652145fe9b7ae5cc8b9806b259f3ed2e134fb825f3bed7fa8bc25fd6c | Triage

Submit
Reports

Overview

overview

Static

static

e55d6c6652...6c.exe

windows7-x64

e55d6c6652...6c.exe

windows10-2004-x64

Sharing

General

Target

e55d6c6652145fe9b7ae5cc8b9806b259f3ed2e134fb825f3bed7fa8bc25fd6c.exe
Size

84KB
Sample

240527-bnzb1aca56
MD5

9096907f595b85c38d86501e1e6392a1
SHA1

7a0566f02a87eb7fd4ca988fce5e6d4bc1be54ac
SHA256

e55d6c6652145fe9b7ae5cc8b9806b259f3ed2e134fb825f3bed7fa8bc25fd6c
SHA512

66d686f1f8d6cf5339d02497b67c9cb2cef64eeecc66b7cfcdd81d0a542c14ffe4fbf1e586aaddb3a74ea1f3c24313bebc9725a7de4c9eb5b1acfc50185ac1aa
SSDEEP

1536:7Lp3YvQCGQ10ismSklVI8VjCX1Isv3fA9qeRgLHsbgI+BSr1Ra:7Lp3Yvhn9VI8VjCX1I43fAwegLMTrO

Score

10^/10

netwire botnet rat stealer

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

e55d6c6652145fe9b7ae5cc8b9806b259f3ed2e134fb825f3bed7fa8bc25fd6c.exe

Resource

win7-20240508-en

netwire botnet rat stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e55d6c6652145fe9b7ae5cc8b9806b259f3ed2e134fb825f3bed7fa8bc25fd6c.exe

Resource

win10v2004-20240426-en

netwire botnet rat stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

netwire

C2

86t7b9br9.ddns.net:8980

Attributes

activex_autorun
false
copy_executable
false
delete_original
false
host_id
HostId-OuEmii
lock_executable
false
offline_keylogger
false
password
4678553478654HJKGHKJGHKJG4543
registry_autorun
false
use_mutex
false

Targets

- Target
  
  e55d6c6652145fe9b7ae5cc8b9806b259f3ed2e134fb825f3bed7fa8bc25fd6c.exe
- Size
  
  84KB
- MD5
  
  9096907f595b85c38d86501e1e6392a1
- SHA1
  
  7a0566f02a87eb7fd4ca988fce5e6d4bc1be54ac
- SHA256
  
  e55d6c6652145fe9b7ae5cc8b9806b259f3ed2e134fb825f3bed7fa8bc25fd6c
- SHA512
  
  66d686f1f8d6cf5339d02497b67c9cb2cef64eeecc66b7cfcdd81d0a542c14ffe4fbf1e586aaddb3a74ea1f3c24313bebc9725a7de4c9eb5b1acfc50185ac1aa
- SSDEEP
  
  1536:7Lp3YvQCGQ10ismSklVI8VjCX1Isv3fA9qeRgLHsbgI+BSr1Ra:7Lp3Yvhn9VI8VjCX1I43fAwegLMTrO
Score

10^/10

netwire botnet rat stealer
- NetWire RAT payload
  rat
- Netwire
  Netwire is a RAT with main functionalities focused password stealing and keylogging, but also includes remote control capabilities as well.
  botnet stealer netwire
- Detects binaries (Windows and macOS) referencing many web browsers. Observed in information stealers.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

netwirebotnetratstealer

behavioral2

netwirebotnetratstealer

© 2018-2025

Terms | Privacy