remcos | 7e3336d8807cd8388486aad1291579306d530edfbd0d4402c5f642184386957f | Triage

Submit
Reports

Overview

overview

Static

static

TaskAudio Driver.exe

windows7_x64

TaskAudio Driver.exe

windows10_x64

Sharing

General

Target

TaskAudio Driver.exe
Size

1.2MB
Sample

210112-lt82r89bka
MD5

16e567f491fdd100e60bd060e400af2b
SHA1

01ebaa041c6803fbcfc6b6924b2ad7f3e79f2b02
SHA256

7e3336d8807cd8388486aad1291579306d530edfbd0d4402c5f642184386957f
SHA512

7cfc3fa620149d648aed26fe0d850eaa4ff570bb5885550f19c6f622f07e618b9adb30524b1f83e13c976600632b569287f025101bec9a171400b9c8eab73426

Score

10^/10

remcos rat

Static task

static1

Behavioral task

behavioral1

Sample

TaskAudio Driver.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

TaskAudio Driver.exe

Resource

win10v20201028

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

remcos

C2

193.111.198.220:5862

Targets

- Target
  
  TaskAudio Driver.exe
- Size
  
  1.2MB
- MD5
  
  16e567f491fdd100e60bd060e400af2b
- SHA1
  
  01ebaa041c6803fbcfc6b6924b2ad7f3e79f2b02
- SHA256
  
  7e3336d8807cd8388486aad1291579306d530edfbd0d4402c5f642184386957f
- SHA512
  
  7cfc3fa620149d648aed26fe0d850eaa4ff570bb5885550f19c6f622f07e618b9adb30524b1f83e13c976600632b569287f025101bec9a171400b9c8eab73426
Score

10^/10

remcos rat
- Remcos
  Remcos is a closed-source remote control and surveillance software.
  rat remcos
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy