Details
FileName | |
---|---|
Malware Family | NetWire |
Date Added | 2016-01-10 22:34:53 |
MD5 | c28f419ce89332adc8cdf30090152beb |
Sha256 | 9615867db6e43adc51f361659efeb358d97e3e827d0245f909b43c0b56ce5f60 |
Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
Use a mutex | False |
---|---|
Startup Name | NetWire |
Install Path | - |
Host ID | Third Story |
Proxy Option | Direct connection |
Registry autorun | True |
Proxy Server | Not Configured |
Mutex | - |
ActiveX Key | - |
Domains | ['cherrymason1212.no-ip.org:9898'] |
ActiveX autorun | False |
Lock executable | False |
KeyLog Dir | %AppData%\Logs\ |
Offline keylogger | True |
Password | teamoluwa |
Copy executable | False |
Delete original | False |
Virustotal
34 out of 56 AV Engines identified the sample as Malicious.