General
-
Target
libcrypto-1_1.sfx.exe
-
Size
1.9MB
-
Sample
210112-w65lrxb3qs
-
MD5
ef39ea0b41b06ea6c8ea7259e538f2d0
-
SHA1
2f2cb13dbeb72a8e946c7aa0c8f1fc59b06ab196
-
SHA256
0fa5f308271acceabd13e15871b230e030550825e17bdd0b3b1e53724ca5abd6
-
SHA512
4e349e98bda41fa0c3e2f6bedeef194d790548dd748ae746bfe06ef0dffe29a4df2a72e3372825896ce4c465a181752fa41b5b8ec1962748bbb5f1fdf85d4b80
Static task
static1
Behavioral task
behavioral1
Sample
libcrypto-1_1.sfx.exe
Resource
win7v20201028
Malware Config
Extracted
remcos
5.45.87.29:8000
Targets
-
-
Target
libcrypto-1_1.sfx.exe
-
Size
1.9MB
-
MD5
ef39ea0b41b06ea6c8ea7259e538f2d0
-
SHA1
2f2cb13dbeb72a8e946c7aa0c8f1fc59b06ab196
-
SHA256
0fa5f308271acceabd13e15871b230e030550825e17bdd0b3b1e53724ca5abd6
-
SHA512
4e349e98bda41fa0c3e2f6bedeef194d790548dd748ae746bfe06ef0dffe29a4df2a72e3372825896ce4c465a181752fa41b5b8ec1962748bbb5f1fdf85d4b80
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-