General
-
Target
PURCHASE OREDER. PRINT. pdf.exe
-
Size
1.1MB
-
Sample
210119-61et7385jj
-
MD5
fe9d2688823fab4c83ab24ca3567d650
-
SHA1
e0d949307cb7b025d48ff3998248106c1dcd91b2
-
SHA256
1b494eddfba240b20f7db04845dd82ccf5dcb3f637c03d7853343be8f7d674ab
-
SHA512
132e35a11162ea1b7d7ff2491d9067e129fe02062745f8cf3d5cc185daa36c5ac1d104be7c75461a3b376f2f0fc7f53f3bfdd0c7d1ff1e6c24e5ba9df71d5b8e
Static task
static1
Behavioral task
behavioral1
Sample
PURCHASE OREDER. PRINT. pdf.exe
Resource
win7v20201028
Malware Config
Extracted
remcos
91.193.75.45:1990
Targets
-
-
Target
PURCHASE OREDER. PRINT. pdf.exe
-
Size
1.1MB
-
MD5
fe9d2688823fab4c83ab24ca3567d650
-
SHA1
e0d949307cb7b025d48ff3998248106c1dcd91b2
-
SHA256
1b494eddfba240b20f7db04845dd82ccf5dcb3f637c03d7853343be8f7d674ab
-
SHA512
132e35a11162ea1b7d7ff2491d9067e129fe02062745f8cf3d5cc185daa36c5ac1d104be7c75461a3b376f2f0fc7f53f3bfdd0c7d1ff1e6c24e5ba9df71d5b8e
-
Suspicious use of SetThreadContext
-