General

  • Target

    2892-480-0x0000000000400000-0x0000000000482000-memory.dmp

  • Size

    520KB

  • MD5

    51d5b456dc8df64464ea4ce4016ae070

  • SHA1

    6cc035c5ce6951cf4a92aec0137c94e90e91f438

  • SHA256

    63ac71eeacde5c44121c4690abba304b4eb02e2e11ec9dcd92ff6314dc640315

  • SHA512

    8ae34d6125bdca53f33cb2f3d13b911f39d32a4005b5bb4fba951f6f1c41389e98625c8f8dfe938e0f9e0d44bf4cf89a97f6fc5038444feb6eb205c58da4e510

  • SSDEEP

    6144:eXIktXfM8Lv86r9uVWAa2je4Z5zl4hgDHQQs4NTQjoHFsAOZZDAXYcN:eX7tPMK8ctGe4Dzl4h2QnuPs/ZD

Score
10/10

Malware Config

Signatures

  • Remcos family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2892-480-0x0000000000400000-0x0000000000482000-memory.dmp
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections