Static task
static1
Behavioral task
behavioral1
Sample
Remcos Professional Cracked By Alcatraz3222.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral2
Sample
Remcos Professional Cracked By Alcatraz3222.exe
Resource
win11-20240611-en
General
-
Target
Remcos Professional Cracked By Alcatraz3222.exe
-
Size
17.7MB
-
MD5
6e666074d66b2f28bf4b761cebf21a82
-
SHA1
79023d7fccda2e7c6fdee339a6fa3d467c120ee6
-
SHA256
774cac1c07b72d4a0a97f4885156788e5bcb76888e99b4271c3d25fb61a92518
-
SHA512
be8cf140dbc41cf7653b5705b0e0ec4e66be3c12afad2e21e15e29401bf1e98b301191a68c3bf6dd3309161a98f0945ba3e8bf546dbd18db1b82640272ef6795
-
SSDEEP
393216:aYuGvV8EHb+in8f4Zg41+Q4AXf5ZZcyfHDMxVpSc+q+eOFxdx:zKqSi8fN4sAXfrZcyfo7p0eYHx
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource Remcos Professional Cracked By Alcatraz3222.exe
Files
-
Remcos Professional Cracked By Alcatraz3222.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 17.4MB - Virtual size: 17.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 280KB - Virtual size: 280KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ