General
-
Target
Nuovo ordine _WJO-001, pdf.exe
-
Size
721KB
-
Sample
210510-hs1759ar8a
-
MD5
5a96079fd1ed632e3afa017e210518a5
-
SHA1
b62b48677bdf7ae841d7aff5d2053e268ec679e0
-
SHA256
ba743ef93625025018dfc47978452d19503cee81e2adc2cd71ac0a173b3e2513
-
SHA512
ce9bf669f76a42380337dc2faa9632b1ee6f7faaeb3f818d80bdd7572388592358c868a63abeb8643d686f4cb5534e59647ec820af243ae319e4afc1268b8fe7
Static task
static1
Behavioral task
behavioral1
Sample
Nuovo ordine _WJO-001, pdf.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
Nuovo ordine _WJO-001, pdf.exe
Resource
win10v20210410
Malware Config
Extracted
remcos
prayerarequesttojah.ddns.net:4344
Targets
-
-
Target
Nuovo ordine _WJO-001, pdf.exe
-
Size
721KB
-
MD5
5a96079fd1ed632e3afa017e210518a5
-
SHA1
b62b48677bdf7ae841d7aff5d2053e268ec679e0
-
SHA256
ba743ef93625025018dfc47978452d19503cee81e2adc2cd71ac0a173b3e2513
-
SHA512
ce9bf669f76a42380337dc2faa9632b1ee6f7faaeb3f818d80bdd7572388592358c868a63abeb8643d686f4cb5534e59647ec820af243ae319e4afc1268b8fe7
Score10/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-