718851e3f679d37e670918ffd078961a[.]bin | Triage

Submit
Reports

Overview

overview

Static

static

1

52062e748f...f3.exe

windows7-x64

52062e748f...f3.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

52062e748f2857bf6bc3161cdfade85ec042d45093673514ca1787f7216a70f3.exe

Resource

win7-20230220-en

remcos remotehost persistence rat

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

52062e748f2857bf6bc3161cdfade85ec042d45093673514ca1787f7216a70f3.exe

Resource

win10v2004-20230220-en

remcos remotehost persistence rat

windows10-2004-x64

10 signatures

150 seconds

General

Target

718851e3f679d37e670918ffd078961a.bin
Size

1.1MB
MD5

977bb7812226f04c46b9b5d6f67eb439
SHA1

8d597977f70d546328bb0ed110ceac38aff6467a
SHA256

fc4febc224b3f9bc730fe1a4793d405df10467e1bcea908c5eb5837a3bd1e97c
SHA512

f59131c42af8a68d2f4306d3e4afb63a8e35be9a1a90758628610174aeb3eefa98b6515b472d45f2fb0b60acac22e3112a9b60478d3980a62fe601d617e9f267
SSDEEP

24576:hKr7TxnYqLQm/cP5xC/J+ix1EcdVEsCPZZRbiOMGi0JCR:hSx/F/JYcdV4ZBbMV0Q

Score

1^/10

Malware Config

Signatures

Files

718851e3f679d37e670918ffd078961a.bin
.zip

Password: infected
52062e748f2857bf6bc3161cdfade85ec042d45093673514ca1787f7216a70f3.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy