General
-
Target
SecuriteInfo.com.Trojan.PackedNET.726.12479.23271
-
Size
1.7MB
-
Sample
210511-hk7vf1c2zx
-
MD5
623b957f20ce6053878bcc86fc8b073e
-
SHA1
2f93c1e73f9a5470903663ecf1212789f95c8227
-
SHA256
1b8733a553b25ca6338c13d25d938778f515f4c87229f3b632077c450c36ea98
-
SHA512
14fa9df4a41795adcd32972e7319aadd1c85c8d913a6c35c4820b3332b748897fb523e59ce278fe30e334d56cd420e9f19b53976c443be0a87c966cc1374b6a5
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.PackedNET.726.12479.23271.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Trojan.PackedNET.726.12479.23271.exe
Resource
win10v20210410
Malware Config
Extracted
remcos
ghdyuienah123.freedynamicdns.org:2006
Targets
-
-
Target
SecuriteInfo.com.Trojan.PackedNET.726.12479.23271
-
Size
1.7MB
-
MD5
623b957f20ce6053878bcc86fc8b073e
-
SHA1
2f93c1e73f9a5470903663ecf1212789f95c8227
-
SHA256
1b8733a553b25ca6338c13d25d938778f515f4c87229f3b632077c450c36ea98
-
SHA512
14fa9df4a41795adcd32972e7319aadd1c85c8d913a6c35c4820b3332b748897fb523e59ce278fe30e334d56cd420e9f19b53976c443be0a87c966cc1374b6a5
Score10/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-