General
-
Target
tool.exe
-
Size
429KB
-
Sample
241110-zkvfmstrbw
-
MD5
6341355e2d476e6fd609e42f3df3e413
-
SHA1
acc007def8b1b8cc2aac8b2d5ff9e8eb8da0e232
-
SHA256
7741a1263b46dbaa5d076d3bde615f3bc0574a9eafbe47065a42fd1f959f5778
-
SHA512
7735b61d6308df68965f026ad99e80e0f7b0991c1dc561ebe650cd23eb3c892d23ba9e7cd216c2d33661135d97452e53be7013e85a6df8cde52c8634271edbe7
-
SSDEEP
6144:H+d2+U+8RRJorR7zu6tF9x46YGg83lgnbJHZFXUU01yC5wJ/3AO2HyXGcKcOiuf:H+d3UGddn4F83l0JjXUU0kXAHTctuf
Malware Config
Extracted
remcos
5.3.0 Light
tool
192.168.0.174:2404
-
audio_folder
MicRecords
-
audio_path
ApplicationPath
-
audio_record_time
5
-
connect_delay
0
-
connect_interval
1
-
copy_file
remcos.exe
-
copy_folder
Remcos
-
delete_file
false
-
hide_file
false
-
hide_keylog_file
false
-
install_flag
false
-
keylog_crypt
false
-
keylog_file
logs.dat
-
keylog_flag
false
-
keylog_folder
remcos
-
mouse_option
false
-
mutex
Rmc-A6UECZ
-
screenshot_crypt
false
-
screenshot_flag
false
-
screenshot_folder
Screenshots
-
screenshot_path
%AppData%
-
screenshot_time
10
-
take_screenshot_option
false
-
take_screenshot_time
5
Targets
-
-
Target
tool.exe
-
Size
429KB
-
MD5
6341355e2d476e6fd609e42f3df3e413
-
SHA1
acc007def8b1b8cc2aac8b2d5ff9e8eb8da0e232
-
SHA256
7741a1263b46dbaa5d076d3bde615f3bc0574a9eafbe47065a42fd1f959f5778
-
SHA512
7735b61d6308df68965f026ad99e80e0f7b0991c1dc561ebe650cd23eb3c892d23ba9e7cd216c2d33661135d97452e53be7013e85a6df8cde52c8634271edbe7
-
SSDEEP
6144:H+d2+U+8RRJorR7zu6tF9x46YGg83lgnbJHZFXUU01yC5wJ/3AO2HyXGcKcOiuf:H+d3UGddn4F83l0JjXUU0kXAHTctuf
Score3/10 -