Overview

overview

10

Static

static

10

23717fb205...c7.exe

windows7-x64

3

23717fb205...c7.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    23717fb20568898c76e833cc105ff3126aafa246c063c0eac32e88f6d2d457c7.exe

  • Size

    486KB

  • Sample

    250128-qg9ayssncp

  • MD5

    81883f55f42366634504d4969afd494e

  • SHA1

    1ab612ca0f54b498b4a876fcfcfaf0333d0a9f2c

  • SHA256

    23717fb20568898c76e833cc105ff3126aafa246c063c0eac32e88f6d2d457c7

  • SHA512

    9719a6e71efad9006e8a0a2cf2d548ef951a2e090e2a22710138d99670aaf96c7452f207ad6cca2e1339c75f39b16292e3ee98fb6f76e7bba0f7f4808e5a58e0

  • SSDEEP

    12288:59PgP3HAMwIGjY4vce6lnBthn5HSRVMf139F5woxr+IwtHwBtFhCsvZJss+P329:X43HfwIGYMcn5PJrZD+U

Score
10/10
remcosremotehostdiscovery

Malware Config

Extracted

Family

remcos

Botnet

RemoteHost

C2

185.42.12.75:2406

Attributes
  • audio_folder

    MicRecords

  • audio_path

    ApplicationPath

  • audio_record_time

    5

  • connect_delay

    0

  • connect_interval

    1

  • copy_file

    remcos.exe

  • copy_folder

    Remcos

  • delete_file

    false

  • hide_file

    false

  • hide_keylog_file

    false

  • install_flag

    false

  • keylog_crypt

    false

  • keylog_file

    logs.dat

  • keylog_flag

    false

  • keylog_folder

    010325

  • keylog_path

    %AppData%

  • mouse_option

    false

  • mutex

    010325-YWFFXL

  • screenshot_crypt

    false

  • screenshot_flag

    false

  • screenshot_folder

    Screenshots

  • screenshot_path

    %AppData%

  • screenshot_time

    10

  • take_screenshot_option

    false

  • take_screenshot_time

    5

Targets

    • Target

      23717fb20568898c76e833cc105ff3126aafa246c063c0eac32e88f6d2d457c7.exe

    • Size

      486KB

    • MD5

      81883f55f42366634504d4969afd494e

    • SHA1

      1ab612ca0f54b498b4a876fcfcfaf0333d0a9f2c

    • SHA256

      23717fb20568898c76e833cc105ff3126aafa246c063c0eac32e88f6d2d457c7

    • SHA512

      9719a6e71efad9006e8a0a2cf2d548ef951a2e090e2a22710138d99670aaf96c7452f207ad6cca2e1339c75f39b16292e3ee98fb6f76e7bba0f7f4808e5a58e0

    • SSDEEP

      12288:59PgP3HAMwIGjY4vce6lnBthn5HSRVMf139F5woxr+IwtHwBtFhCsvZJss+P329:X43HfwIGYMcn5PJrZD+U

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.