remcos | d6f371cc5b5f31de8eaa876ecf690d2a337c7a0a54f113dd130f3df50020bfac | Triage

Sharing

General

Target

d6f371cc5b5f31de8eaa876ecf690d2a337c7a0a54f113dd130f3df50020bfac
Size

1.2MB
Sample

241013-ebx5ysxfqa
MD5

b52ef3776ede344d3d7dfe3399e58d8a
SHA1

a65cd3432ab5c0f49ee4a11aad70858e5d60a660
SHA256

d6f371cc5b5f31de8eaa876ecf690d2a337c7a0a54f113dd130f3df50020bfac
SHA512

b40e6dcbb478ca57c309402c39537a5b9b5f31f4ef9358a583d11ad92fbebd6048f3e93531587b3e4ce12a450b5d402725db57ec060143751d7f125ee9582fa2
SSDEEP

12288:BEKvuXY0dr5G+XjT4DBF1yMjIgS4hPe/wCFm3twmmCJ3V2xK23v1gwDgaTlOykZ2:teRHrwrLzm1bXTlOykZexA1wzlUK5Z

Score

10^/10

remcos discovery rat

Malware Config

Targets

- Target
  
  d6f371cc5b5f31de8eaa876ecf690d2a337c7a0a54f113dd130f3df50020bfac
- Size
  
  1.2MB
- MD5
  
  b52ef3776ede344d3d7dfe3399e58d8a
- SHA1
  
  a65cd3432ab5c0f49ee4a11aad70858e5d60a660
- SHA256
  
  d6f371cc5b5f31de8eaa876ecf690d2a337c7a0a54f113dd130f3df50020bfac
- SHA512
  
  b40e6dcbb478ca57c309402c39537a5b9b5f31f4ef9358a583d11ad92fbebd6048f3e93531587b3e4ce12a450b5d402725db57ec060143751d7f125ee9582fa2
- SSDEEP
  
  12288:BEKvuXY0dr5G+XjT4DBF1yMjIgS4hPe/wCFm3twmmCJ3V2xK23v1gwDgaTlOykZ2:teRHrwrLzm1bXTlOykZexA1wzlUK5Z
Score

10^/10

remcos discovery rat
- Remcos
  Remcos is a closed-source remote control and surveillance software.
  rat remcos
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

remcosdiscoveryrat

behavioral2

remcosdiscoveryrat