General
-
Target
Shipping Document PL& BL 960.exe
-
Size
1001KB
-
Sample
210113-2zlnn6q2t2
-
MD5
eb305d3d7f3a4b7fe158d41522458d27
-
SHA1
20916b0fbaee03bdb6da50b8d1c75a1b77eeaa0c
-
SHA256
3dde92f19924860f0874ee0fe3fab80a1112c20e18d9782528bd7c471f0f2344
-
SHA512
e81c7710556d79a5d60aeb7488408087cb8450599f483c1d4875da7487bebc88225515763f77e74eabda98c6e1fe364e54a9cdece966616a2d1a9dabc1255614
Static task
static1
Behavioral task
behavioral1
Sample
Shipping Document PL& BL 960.exe
Resource
win7v20201028
Malware Config
Extracted
remcos
favour2021.ddns.net:1990
Targets
-
-
Target
Shipping Document PL& BL 960.exe
-
Size
1001KB
-
MD5
eb305d3d7f3a4b7fe158d41522458d27
-
SHA1
20916b0fbaee03bdb6da50b8d1c75a1b77eeaa0c
-
SHA256
3dde92f19924860f0874ee0fe3fab80a1112c20e18d9782528bd7c471f0f2344
-
SHA512
e81c7710556d79a5d60aeb7488408087cb8450599f483c1d4875da7487bebc88225515763f77e74eabda98c6e1fe364e54a9cdece966616a2d1a9dabc1255614
-
Suspicious use of SetThreadContext
-