GridinSoft Threat Intelligence
NETwbw02.sys threat report
GridinSoft Anti-Malware detection
Detected by GridinSoft before you download
The current ThreatInfo record shows this exact file hash detected as Trojan.Generic. Download GridinSoft Anti-Malware to scan the device, confirm whether this file is present, and remove the detected object if it is found.
- Detection name
- Trojan.Generic
- Recommended action
- Scan and remove
- Last analysis
- 2024-10-24 23:00:43 (2 years ago)
- File hash
- b61108a7942f02fdf0f20c5bfab217ac
Why it matters
Why GridinSoft flags this file
GridinSoft identifies the sample as Trojan.Generic, part of the Trojan threat category.
Malware disguised as legitimate software or delivered through deceptive packaging. Related Trojan reports help compare this file with nearby detections, publishers, and hashes.
First seen 2024-10-24 23:00:43 (2 years ago); latest analysis 2024-10-24 23:00:43 (2 years ago).
Company metadata: Intel Corporation. Product metadata: Intel® Wireless WiFi Link Adapter.
ThreatInfo has seen this file in user or system paths listed below. Unexpected locations increase the need for local verification.
Recommended action
What to do next
- Compare the MD5 above with the file found on the device.
- Check whether the file appears in the observed locations or under one of the alternate names.
- Run GridinSoft Anti-Malware to confirm the detection and remove the file if it is present. Review the Trojan category for related samples and common context.
File context
NETwbw02.sys is a Windows file recorded in the ThreatInfo database. It is associated with Intel® Wireless WiFi Link Adapter. The reported company name is Intel Corporation. The current detection status is Trojan.Generic, based on the latest analysis from 2024-10-24 23:00:43 (2 years ago). ThreatInfo groups this verdict with Trojan reports for broader family-level investigation.
If NETwbw02.sys appears on your computer unexpectedly, treat it as suspicious. Check its location, digital signature, and recent system changes before allowing it to run. A full anti-malware scan is recommended when this file is detected as Trojan.Generic.
File Details
| Product Name: | Intel® Wireless WiFi Link Adapter |
| Company Name: | Intel Corporation |
| MD5: | b61108a7942f02fdf0f20c5bfab217ac |
| Size: | 3 MB |
| First Published: | 2024-10-24 23:00:43 (2 years ago) |
| Latest Published: | 2024-10-24 23:00:43 (2 years ago) |
| Status: | Trojan.Generic (on last analysis) | |
| Analysis Date: | 2024-10-24 23:00:43 (2 years ago) |
Detection screenshot
The screenshot is a visual record of a GridinSoft Anti-Malware detection for this sample. Use the hash and metadata above as the primary identifiers when comparing the file on your system.
Common Places:
| %programfiles%\intel\wifidrivers |
ThreatInfo has observed NETwbw02.sys in the locations listed above. Files found in temporary folders, user profile folders, startup locations, or unusual application directories should be reviewed more carefully than files installed under a known program directory.
Geographic signal
Observed country distribution
ThreatInfo has seen NETwbw02.sys across 1 countries. Use this signal to compare local evidence with where the sample is most often reported.
The strongest geographic signal for this file is Sweden with 100.0% of observed hits. Geographic distribution can help identify targeted campaigns, regional software bundles, or where a file is most commonly reported.
OS Version:
The most common operating system signal for NETwbw02.sys is Windows 10 with 100.0% of observed hits. If your system differs from the common profile, check whether the file was introduced by a specific installer, archive, or removable device.
Analysis
NETwbw02.sys is identified as pe for 64-bit systems. The subsystem is Native. PE header values are useful for triage, especially when they do not match the expected publisher, product, or release timeline.
PE Sections:
Section layout highlights raw-size concentration, repeated names, packer markers, and hashes that can be compared across related samples.
642044d6e1b3c065f5eb66dff1231721
fdb0d1a7446dab8e4c50ea85280af294
49fdf97439668dba5251b7b32962c775
7816d12b78dbea4d458df71d8a048eb3
589fe51ca2452d83d6b602835aede160
056cee4b8e22d7cd0fb1d234161a97e3
4ec34826bf7cd610cca1680d079f413f
edaa54b6397dd077d235dc06ac743550
d9ac217d0a7a5947d2dbe0415fa93e92
83c908a636301b1e5a73773ffc669122
fe30a8f93b23db0c090e1396bbbc86f5
5c7a786845cf4ea4bde15410e79a8970
0590bd15a37cb67fe4938ac70f73aaf1
63f30236f828285dbb97e5330a17707c
4db282f3458c08ad96e0f1ddcd12b83b
c28261b96491ff58df3ae3ccee523ffd
7522cdbf46cbf978132b14c26abce551
2b6ab021508c9c2ef2d0a481322651c8
f160403194d5fabee31246df7fa27088
b7febcf412cb62da38f05377bf55a193
aacb207d11730dc8fa6bebd43bd1fc25
28e3c28b8785ff9b703ecab1e5abde58
e0e8158e6e32a69e55a1301fbb750ee4
2de85ae3ba1f8fcdce4e64c255b5fe54
8bb3cfde881c9209eef92dc18ccb3d42
8672a4d2ffffe8b8c4936f2ef2b283f0
7b4801891adacd78c076ca1674280e38
f794dcd5b00d814d12cac3ee63e5039c
33ea08b58036fd9e2cdfa14529d06649
e9471478a6297b4b55894f170ca0840b
54af54fb124842c8131592018c8c5193
9c7018b6fabc5ca0be9e3cd4d9b6f3c0
PE section names and hashes can reveal packing, injected resources, or unusual build artifacts. Sections with uncommon names, very large raw data, or hashes that differ from a trusted copy deserve additional review.
Report conclusion
GridinSoft detects this file as Trojan.Generic
This report identifies NETwbw02.sys by MD5 b61108a7942f02fdf0f20c5bfab217ac. It is part of the Trojan report group. If the same file is present on your device, scan the system and remove the detected object after confirming the hash and location.