Overview

overview

10

Static

static

09000900000000000.exe

windows7_x64

10

09000900000000000.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    09000900000000000.exe

  • Size

    1.3MB

  • Sample

    210118-w8rwcam74x

  • MD5

    10f306cb61e4f2894b60220ce173ef99

  • SHA1

    79ca974cf5435d64c33cd92a85af5cc7627e569d

  • SHA256

    89da7208176dbbd63ca89225c0defa5c3c12fb4e067d3b4630eac41c5e621017

  • SHA512

    d34c65adc85db0863b11813aba60a3e510be599a56b700dfb4245cfa55b9ecf2af403918d8494b2d3cc13925f7a63cc693f3b274bb9f4495a8d91462cd72cffb

Score
10/10
remcosrat

Malware Config

Targets

    • Target

      09000900000000000.exe

    • Size

      1.3MB

    • MD5

      10f306cb61e4f2894b60220ce173ef99

    • SHA1

      79ca974cf5435d64c33cd92a85af5cc7627e569d

    • SHA256

      89da7208176dbbd63ca89225c0defa5c3c12fb4e067d3b4630eac41c5e621017

    • SHA512

      d34c65adc85db0863b11813aba60a3e510be599a56b700dfb4245cfa55b9ecf2af403918d8494b2d3cc13925f7a63cc693f3b274bb9f4495a8d91462cd72cffb

    Score
    10/10
    remcosrat

    • Remcos

      Remcos is a closed-source remote control and surveillance software.

      ratremcos

    • Drops startup file

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks