Overview

overview

10

Static

static

10

3048-404-0...ry.exe

windows7-x64

10

3048-404-0...ry.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3048-404-0x00000000105A0000-0x0000000010624000-memory.dmp

  • Size

    528KB

  • MD5

    c7dac69a89b3c0f2c5ef5a6698a6f2f0

  • SHA1

    7ee491d4928ff653b804b36f53a4d0eb233c39db

  • SHA256

    8312d93de2cb97c0295c07ee22e873de114004a22fad1a0a74e4aa7ee389f09c

  • SHA512

    25fa44e1ba891ed44e0fd63c4eee52c2caf6adbc12bf386a75386f17f622aa4bebaab88bed8ebb33a05b3c9b65bf1cfd4a04f88326f601ac1d4228944073e03f

  • SSDEEP

    12288:cRXxReZj3WZfj/2eSseWFaIe2+f8CL47bs/Zf2rDU:cx7cyF2eSsewS8W47eZO

Score
10/10
remcos

Malware Config

Signatures

  • Remcos family
    remcos
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3048-404-0x00000000105A0000-0x0000000010624000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections