MALWARE-TOOLS --
MALWARE-TOOLS Win.Dropper.WiryJMPer variant download attempt
This event is generated when the download of Netwire RAT dropper "WiryJMPer" variant is detected. Impact: A Network Trojan was detected Details: WiryJMPer will drop Netwire RAT along with a decoy, typically legitimate cryptocurrency wallet like ABBCoin wallet, Yoroi wallet, etc. WiryJMPer itself is a patched, modified WinBin2Iso binary that contains obfuscated copies of Netwire and decoy goodware to drop. Ease of Attack:
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
None
No information provided
None