Overview

overview

10

Static

static

09000090INVOICE.exe

windows7_x64

10

09000090INVOICE.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    09000090INVOICE.exe

  • Size

    210KB

  • Sample

    210118-ctkvlb76v2

  • MD5

    f4d2193e00008bd236c7658fc0cff060

  • SHA1

    f6b7a99d48415ebb3ab6a178e211234e11040629

  • SHA256

    9d692165cbb8d2a181769b723e7300b02f534fec4563d4bd155b4c293d6ebe72

  • SHA512

    3383c50ca92c0eaabd487444057783e32da41fac60a5361dbf755e610ab86b48367d3cce338ebb17abf53d03154fe609d4b15eb9a02b999a5e249d4dcab7c88c

Score
10/10
remcosrat

Malware Config

Targets

    • Target

      09000090INVOICE.exe

    • Size

      210KB

    • MD5

      f4d2193e00008bd236c7658fc0cff060

    • SHA1

      f6b7a99d48415ebb3ab6a178e211234e11040629

    • SHA256

      9d692165cbb8d2a181769b723e7300b02f534fec4563d4bd155b4c293d6ebe72

    • SHA512

      3383c50ca92c0eaabd487444057783e32da41fac60a5361dbf755e610ab86b48367d3cce338ebb17abf53d03154fe609d4b15eb9a02b999a5e249d4dcab7c88c

    Score
    10/10
    remcosrat

    • Remcos

      Remcos is a closed-source remote control and surveillance software.

      ratremcos

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks