General
-
Target
23de51764dab80ca27ad2529e0ab7efd1b987bedc9e611081a6306fe68dd1945.exe
-
Size
488KB
-
Sample
241113-tx8adavgjb
-
MD5
59e2b18321dd9b38a658db9a5164bb20
-
SHA1
96bc0b9cf41c66da930e94de8426ae49b2e65e7f
-
SHA256
23de51764dab80ca27ad2529e0ab7efd1b987bedc9e611081a6306fe68dd1945
-
SHA512
db5912967bc29cbf7a3c7d89e5ddfee9920facd260c48f6556759dd176c70cfb4a15c4e5a43fb994a74237d938929ae4e4a5ff272418d77e2ba998adf7e36521
-
SSDEEP
12288:+5k+Yqaxrh3Nln+N52fIA4jbsvZNvA49u:YY9xrh3NDfIA4jOZzu
Malware Config
Extracted
remcos
New
95.217.148.142:9006
-
audio_folder
MicRecords
-
audio_record_time
5
-
connect_delay
0
-
connect_interval
1
-
copy_file
remcos.exe
-
copy_folder
Remcos
-
delete_file
false
-
hide_file
false
-
hide_keylog_file
false
-
install_flag
false
-
keylog_crypt
false
-
keylog_file
logs.dat
-
keylog_flag
false
-
keylog_folder
remcos
-
mouse_option
false
-
mutex
SSS1ooosSAweewwe-K7VJ7E
-
screenshot_crypt
false
-
screenshot_flag
false
-
screenshot_folder
Screenshots
-
screenshot_path
%AppData%
-
screenshot_time
10
-
take_screenshot_option
false
-
take_screenshot_time
5
Targets
-
-
Target
23de51764dab80ca27ad2529e0ab7efd1b987bedc9e611081a6306fe68dd1945.exe
-
Size
488KB
-
MD5
59e2b18321dd9b38a658db9a5164bb20
-
SHA1
96bc0b9cf41c66da930e94de8426ae49b2e65e7f
-
SHA256
23de51764dab80ca27ad2529e0ab7efd1b987bedc9e611081a6306fe68dd1945
-
SHA512
db5912967bc29cbf7a3c7d89e5ddfee9920facd260c48f6556759dd176c70cfb4a15c4e5a43fb994a74237d938929ae4e4a5ff272418d77e2ba998adf7e36521
-
SSDEEP
12288:+5k+Yqaxrh3Nln+N52fIA4jbsvZNvA49u:YY9xrh3NDfIA4jOZzu
Score3/10 -