General
-
Target
6460ce9a904ae76454bf01cad136fcc608811701f2b28926f72d542fa2793bff
-
Size
7.6MB
-
Sample
201111-tegxf7w3dn
-
MD5
e8cb5eb80ab232ad7d1ae41e5baabc29
-
SHA1
a0acc1fba9c81099015b236d7f8ffef6e4dc881c
-
SHA256
6460ce9a904ae76454bf01cad136fcc608811701f2b28926f72d542fa2793bff
-
SHA512
c5a9b3000454c4ae8a6b6993fa6225a0dffeba52eedaf0d890bc1793b76d9b6ea7b5f5604210baac3770f53a0f5a00c9b8ab9bcdbe24be3cf5d422cd94ae5924
Malware Config
Extracted
remcos
CEDSXoissLv2NiM.club:5762
PgqduOYXVZeNNam.xyz:5762
USd7O88wEMlUtX5.xyz:5762
pMfiryhhkiN98Px.xyz:5762
Se2Qwz60L2OxZNM.xyz:5762
GWtY0fiG58DCq6F.xyz:5762
maui16azsncpo97.info:5762
mj99puoba6c3gun.info:5762
tu90to3b4q4uqze.info:5762
cwt1u0vv8ic357ov.info:5762
agaoajz1hrvevre.info:5762
poykoqnl7jkj632.info:5762
cbiq1neygyp1wno.info:5762
BCBNcQ393Z3HPLQ.club:5762
Targets
-
-
Target
6460ce9a904ae76454bf01cad136fcc608811701f2b28926f72d542fa2793bff
-
Size
7.6MB
-
MD5
e8cb5eb80ab232ad7d1ae41e5baabc29
-
SHA1
a0acc1fba9c81099015b236d7f8ffef6e4dc881c
-
SHA256
6460ce9a904ae76454bf01cad136fcc608811701f2b28926f72d542fa2793bff
-
SHA512
c5a9b3000454c4ae8a6b6993fa6225a0dffeba52eedaf0d890bc1793b76d9b6ea7b5f5604210baac3770f53a0f5a00c9b8ab9bcdbe24be3cf5d422cd94ae5924
Score10/10-
Remcos
Remcos is a closed-source remote control and surveillance software.
-
rezer0
Detects ReZer0, a packer with multiple versions used in various campaigns.
-
Suspicious use of SetThreadContext
-