1a37aa7dedfb37fdaf5315927735b27d | Triage

Submit
Reports

Overview

overview

Static

static

Order E035...22.exe

windows7-x64

Order E035...22.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

Order E0359977A-4659122.exe

Resource

win7-20220812-en

remcos remotehost rat

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

Order E0359977A-4659122.exe

Resource

win10v2004-20220812-en

remcos remotehost rat

windows10-2004-x64

4 signatures

150 seconds

General

Target

1a37aa7dedfb37fdaf5315927735b27d
Size

643KB
MD5

1a37aa7dedfb37fdaf5315927735b27d
SHA1

a0c2a586058a77de49983c8282cbde5ff3c241fc
SHA256

4a60f7da97dff575737f6d434c639bf977983352f33d55d267060312fd26c5d7
SHA512

404f09893fdbb9911d15fca8f03a7f1400a314fe839a72cb94d0849bcffbb01ea5abd509d2b6a61e04dca3b51030cf8dd5461305bd77f745450242ab34486004
SSDEEP

12288:V5DLQycYchSKJujn9ZqoObRdBwJQ+3ClypHAYAFp90/fjTyEEo1:VqYchpJen9ZObafS0dqJYSEEo1

Score

N/A

Malware Config

Signatures

Files

1a37aa7dedfb37fdaf5315927735b27d
.eml
- http://www.ktb-europe.com/
Order E0359977A-4659122.zip
.zip
Order E0359977A-4659122.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 518KB - Virtual size: 518KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
email-html-2.txt
.html
email-plain-1.txt

© 2018-2025

Terms | Privacy