General

  • Target

    2168-129-0x0000000000400000-0x0000000000482000-memory.dmp

  • Size

    520KB

  • MD5

    67fd7916a293b087e493018a8874d93c

  • SHA1

    02bf03d8802b7dd99f43d2a93e3b49db255a8f04

  • SHA256

    eeac9a31fdbb905ebd692c30cb6de41f1752e6c0a9ea1416e47826fc515378e9

  • SHA512

    67965714d6e12109f2048ce858276bda8eb93d1ad7797a11fd10f871bc2fd8bd80f890de23ea018c38c86ab02dbb9cba722a53ee1af220306374dc6b530289a4

  • SSDEEP

    6144:sXIktXfM8Lv86r9uVWAa2je4Z5zl4hgDHQQs4NTQjoHFsAOZZDAXYcN:sX7tPMK8ctGe4Dzl4h2QnuPs/ZD

Score
10/10

Malware Config

Signatures

  • Remcos family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2168-129-0x0000000000400000-0x0000000000482000-memory.dmp
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections