General
-
Target
PO. MKL1-20-06053 & TECHNICAL SPECIFICATION.exe
-
Size
771KB
-
Sample
210111-rt8vnad3w6
-
MD5
81338cc1ec365407ac22a6eab3ece373
-
SHA1
29f4ca9ec7fa628cea899292ac517f3852361f5d
-
SHA256
6a2ffd2b362dd38d2518163bd6c849366ab37d38a446845cc9789dcd02f8e7db
-
SHA512
0b66cbf636ccd22a4b3aab1d4bdd5357fd944de5647314d0023b7220ccc87379d59f15811c14f66a7163fcb14afcbd118ef9023686b1e485d1df9074b93c96ea
Static task
static1
Behavioral task
behavioral1
Sample
PO. MKL1-20-06053 & TECHNICAL SPECIFICATION.exe
Resource
win7v20201028
Malware Config
Extracted
remcos
212.83.46.26:4023
Targets
-
-
Target
PO. MKL1-20-06053 & TECHNICAL SPECIFICATION.exe
-
Size
771KB
-
MD5
81338cc1ec365407ac22a6eab3ece373
-
SHA1
29f4ca9ec7fa628cea899292ac517f3852361f5d
-
SHA256
6a2ffd2b362dd38d2518163bd6c849366ab37d38a446845cc9789dcd02f8e7db
-
SHA512
0b66cbf636ccd22a4b3aab1d4bdd5357fd944de5647314d0023b7220ccc87379d59f15811c14f66a7163fcb14afcbd118ef9023686b1e485d1df9074b93c96ea
-
Suspicious use of SetThreadContext
-