remcos | b4b683d76ec8d685a970e414fb4ef48c5e8a4e8e403b2fc38649581c4a7be8c2 | Triage

Sharing

General

Target

2548-569-0x0000000003600000-0x000000000367F000-memory.dmp
Size

508KB
Sample

250217-ga31xssldk
MD5

2b67a8c85e8bce41c76f8cb7ed8345a1
SHA1

cc95e7d3c8fdc877c9fa3cd20b85c57afd05c7c6
SHA256

b4b683d76ec8d685a970e414fb4ef48c5e8a4e8e403b2fc38649581c4a7be8c2
SHA512

8c117c0e1468fbefa0c389341f55c25f1eb2a4137f729e36f994246ae55b4a7eed083f04fbef40924a8a31b7f53bccd9047cd5e9bcef984aa2913a173865704c
SSDEEP

12288:t9PgP3HAMwIGjY4vce6lnBthn5HSRVMf139F5woxr+IwtHwBtFcCsvZD5:b43HfwIGYMcn5PJ8Z

Score

10^/10

remcos discovery

Malware Config

Targets

- Target
  
  2548-569-0x0000000003600000-0x000000000367F000-memory.dmp
- Size
  
  508KB
- MD5
  
  2b67a8c85e8bce41c76f8cb7ed8345a1
- SHA1
  
  cc95e7d3c8fdc877c9fa3cd20b85c57afd05c7c6
- SHA256
  
  b4b683d76ec8d685a970e414fb4ef48c5e8a4e8e403b2fc38649581c4a7be8c2
- SHA512
  
  8c117c0e1468fbefa0c389341f55c25f1eb2a4137f729e36f994246ae55b4a7eed083f04fbef40924a8a31b7f53bccd9047cd5e9bcef984aa2913a173865704c
- SSDEEP
  
  12288:t9PgP3HAMwIGjY4vce6lnBthn5HSRVMf139F5woxr+IwtHwBtFcCsvZD5:b43HfwIGYMcn5PJ8Z
Score

8^/10

discovery
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2