remcos | 7adaa2ece539a6b3a01060e92ad910a7e8983e6325d72dadb257d7085f28ce81 | Triage

Submit
Reports

Overview

overview

Static

static

ORDEZTECH202067.exe

windows7_x64

ORDEZTECH202067.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ORDEZTECH202067.exe

Resource

win7-20220414-en

remcos amazone rat

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ORDEZTECH202067.exe

Resource

win10v2004-20220414-en

remcos amazone rat

windows10-2004_x64

0 signatures

0 seconds

General

Target

7adaa2ece539a6b3a01060e92ad910a7e8983e6325d72dadb257d7085f28ce81
Size

139KB
MD5

c15718ee640686215d871212f87efcbb
SHA1

d7584d324eac7693090f06d07cf8708b9d5e6eff
SHA256

7adaa2ece539a6b3a01060e92ad910a7e8983e6325d72dadb257d7085f28ce81
SHA512

db9729de56695d0f123dfeaeb33d5db264228be96196adc97d61ef54a385b2fd64a1337ae67fb2dc4744f702ec867adc9d28ef3059ddfd77f7ee103c347a8864
SSDEEP

3072:n0Fj8HsRQ1gU6VYxSu0XrW+3BquSOwyh+c8Lb0HRkrBhvrDGFq8:n0Fg9hgbN3qOQbS2rB1Kn

Score

10^/10

remcos

Malware Config

Signatures

Remcos family
remcos

Files

7adaa2ece539a6b3a01060e92ad910a7e8983e6325d72dadb257d7085f28ce81
.zip
ORDEZTECH202067.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 364KB - Virtual size: 364KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy