8528321899[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

6999418460...67.exe

windows7-x64

6999418460...67.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6999418460da451de7fd4dbc160989ca4c77dc270fd640a447abb8e06d241167.exe

Resource

win7-20221111-en

remcos gmg persistence rat

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

6999418460da451de7fd4dbc160989ca4c77dc270fd640a447abb8e06d241167.exe

Resource

win10v2004-20220812-en

remcos gmg persistence rat

windows10-2004-x64

8 signatures

150 seconds

General

Target

8528321899.zip
Size

1.4MB
MD5

604f072295668e0d66fba8e9c4288439
SHA1

e2358a70aa7b29da1053e9470503ce5c88804445
SHA256

132bd4d8504eb976443884e5bbd55eda4108997b2e7eea370456dbc1485f058b
SHA512

b8044b9e1bbd80d9010cdfb3edea4d9ac0e81e828d749617751abbb73615b2b5101acafabfd7e335bc75d71821b8072d416365821d6d3e6164dc7ce0556ba442
SSDEEP

24576:yvUqJqeNoZ48MHuilxO6akngNtEYyRonxfmvrY7JLv9G6gzn7A9ALzirPIK9IaJ+:yTJ9MKkEni4R0fcrY7pvI6gj46i70aDM

Score

N/A

Malware Config

Signatures

Files

8528321899.zip
.zip

Password: infected
6999418460da451de7fd4dbc160989ca4c77dc270fd640a447abb8e06d241167
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy