Overview

overview

10

Static

static

10

1548-517-0...ry.exe

windows7-x64

10

1548-517-0...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1548-517-0x0000000005040000-0x00000000050C4000-memory.dmp

  • Size

    528KB

  • MD5

    0358dd81cdc2fb128445877f4f737563

  • SHA1

    53879dda3107626d54b90593f070755fa79dbefd

  • SHA256

    71052144ca2966a32d10dc19d07942230781d7bc75e2ce23a243f5993862a0a3

  • SHA512

    f8063afaa7079749e305ba16e3b7825e339d87d4353d4a86cda513a1082ca7b4c1eaf7264c025c9037495cca7cb4fd7bbdbe8d38dc0874ee7ed3422cdbc91bd1

  • SSDEEP

    12288:xRXxReZj3WZfj/2eSseWFaIe2+f8CL47bs/ZiKKDU:xx7cyF2eSsewS8W47eZD

Score
10/10
remcos

Malware Config

Signatures

  • Remcos family
    remcos
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1548-517-0x0000000005040000-0x00000000050C4000-memory.dmp
    .exe windows x86


    Headers

    Sections