remcos | 13a01ab49ce46ef8c0b777be39442175acb0c2ff43f18430549a9927c991885b | Triage

Submit
Reports

Overview

overview

Static

static

na.exe

windows7_x64

na.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

na.exe

Resource

win7-20220414-en

remcos .net agilenet persistence rat

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

na.exe

Resource

win10v2004-20220414-en

remcos .net persistence rat

windows10-2004_x64

0 signatures

0 seconds

General

Target

13a01ab49ce46ef8c0b777be39442175acb0c2ff43f18430549a9927c991885b
Size

140KB
MD5

2964f55c3286b818da2f336f52dcca73
SHA1

71097d14e91a4a82f2559932bd1f4aa77326ea6b
SHA256

13a01ab49ce46ef8c0b777be39442175acb0c2ff43f18430549a9927c991885b
SHA512

fbe9f1d8bbef6f0855d7e6f180799a0c46790de3183e7fdbadda050a1a178ef2f28fb69fcaf198d7d32d2484a4e370b357f1ff4db42e3562d49689fd8f252a12
SSDEEP

3072:6HKyibmCvEc9/xEs5V67+gsuP0oHLT13QO/M6SQzYDaHYt4585:KKyibmC8W/xzLu0or9DJqaHYt4C

Score

10^/10

remcos

Malware Config

Signatures

Remcos family
remcos

Files

13a01ab49ce46ef8c0b777be39442175acb0c2ff43f18430549a9927c991885b
.ace
out.ace
.ace
na.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 337KB - Virtual size: 337KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy