remcos | 46f9b3a73b2ef17c7ace714e6b69b02e444096fb395d85e3b3220ed13d060a48 | Triage

Submit
Reports

Overview

overview

Static

static

drivers_check.exe

windows7_x64

1

drivers_check.exe

windows10_x64

Sharing

General

Target

drivers_check.exe
Size

1.4MB
Sample

210101-qw3stjsds2
MD5

46580314ad41ee9c33eea70fd336f9d1
SHA1

0f27e8e24c40de4df8d6f50634c7aba117679f7a
SHA256

46f9b3a73b2ef17c7ace714e6b69b02e444096fb395d85e3b3220ed13d060a48
SHA512

f160f04a9104eff461122393c62a9a3f963eea47e50b7464787db6212db2ec06ba295e122ac085653b95d224dd23504de98a05733b2d5b97e44fc36d4b5a3c27

Score

10^/10

remcos rat

Static task

static1

Behavioral task

behavioral1

Sample

drivers_check.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

drivers_check.exe

Resource

win10v20201028

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

remcos

C2

5.61.56.10:9003

Targets

- Target
  
  drivers_check.exe
- Size
  
  1.4MB
- MD5
  
  46580314ad41ee9c33eea70fd336f9d1
- SHA1
  
  0f27e8e24c40de4df8d6f50634c7aba117679f7a
- SHA256
  
  46f9b3a73b2ef17c7ace714e6b69b02e444096fb395d85e3b3220ed13d060a48
- SHA512
  
  f160f04a9104eff461122393c62a9a3f963eea47e50b7464787db6212db2ec06ba295e122ac085653b95d224dd23504de98a05733b2d5b97e44fc36d4b5a3c27
Score

10^/10

remcos rat
- Remcos
  Remcos is a closed-source remote control and surveillance software.
  rat remcos
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy