General

  • Target

    2508-30-0x0000000000400000-0x0000000000482000-memory.dmp

  • Size

    520KB

  • MD5

    634b1cac7708231250e5e8ffc1b1f4ff

  • SHA1

    bc4f806f7cd9713ad73711dcf506457eb515086d

  • SHA256

    9db4876d29f6e07e6b5a5f9505578aa0a641fbcb8e10d81dcde4a75ea283ade7

  • SHA512

    b816582480a9fa2498d7dd6dd67f0964daeda40c2ce13823281c11aa3fe86f0d36e6c5cc21f204eefbb64373beb8dfdd4051372e739f84b8479b2f32cfa79906

  • SSDEEP

    6144:dXIktXfM8Lv86r9uVWAa2je4Z5zl4hgDHQQs4NTQjoHFsAOZZ5AXIcN:dX7tPMK8ctGe4Dzl4h2QnuPs/Z5

Score
10/10

Malware Config

Signatures

  • Remcos family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2508-30-0x0000000000400000-0x0000000000482000-memory.dmp
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections