General
-
Target
Factura Serfinanza_0988591359_871136_7591212483295942_9416349_83986212193236775_0965000963599604_pdf.exe
-
Size
181KB
-
Sample
210426-5vxw1mbktn
-
MD5
357f02cbb2bd479ff6150fd692ce37e8
-
SHA1
b90a32b5e542b27f20413fff6ad627f2418dbbf5
-
SHA256
b96287218d12e12274b2c11099833981affae08eb71c6a37f7155456e87866a0
-
SHA512
40bed9e43c70b4b09e7eb6ffa63629ddc4148398f0851bb286ae02bc6f46586031d69f45be241d97e92cf747b0125e76fc9eadf65ed855703dd4a3f9740428d6
Static task
static1
Behavioral task
behavioral1
Sample
Factura Serfinanza_0988591359_871136_7591212483295942_9416349_83986212193236775_0965000963599604_pdf.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
Factura Serfinanza_0988591359_871136_7591212483295942_9416349_83986212193236775_0965000963599604_pdf.exe
Resource
win10v20210408
Malware Config
Extracted
remcos
databasepropersonombrecomercialideasearchwords.services:3521
Targets
-
-
Target
Factura Serfinanza_0988591359_871136_7591212483295942_9416349_83986212193236775_0965000963599604_pdf.exe
-
Size
181KB
-
MD5
357f02cbb2bd479ff6150fd692ce37e8
-
SHA1
b90a32b5e542b27f20413fff6ad627f2418dbbf5
-
SHA256
b96287218d12e12274b2c11099833981affae08eb71c6a37f7155456e87866a0
-
SHA512
40bed9e43c70b4b09e7eb6ffa63629ddc4148398f0851bb286ae02bc6f46586031d69f45be241d97e92cf747b0125e76fc9eadf65ed855703dd4a3f9740428d6
Score10/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-