Netwire is a Remote Access Trojan (RAT) capable of stealing passwords, keylogging, and includes remote control capabilities. Netwire RAT has been used by advanced persistent threat groups (APT) in the past. In a recent malspam campaign, Netwire RAT was delivered via an achieved zip file containing a Visual Basis script.  OpenText Security Consulting team, as …

The post Dissecting Netwire Remote Access Trojan (RAT) behavior on an infected endpoint appeared first on OpenText Blogs.