MalwareBazaar Database
You are currently viewing the MalwareBazaar entry for SHA256 ed42f2ef9ce02d39987ff3fae12bbc6bfa23f1352fecf1b7b18b3130f34e98e0. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.
Database Entry
RemcosRAT
Vendor detections: 3
| SHA256 hash: | ed42f2ef9ce02d39987ff3fae12bbc6bfa23f1352fecf1b7b18b3130f34e98e0 |
|---|---|
| SHA3-384 hash: | 2a2a53b42a8eba21625292e07e51aef9b6db47e99316f319f2d2fb7166cbab565bc3a8276d68c134b386aee1a4c56296 |
| SHA1 hash: | 8973c44a5543d9c3c04f25614be45dfc7fbd0088 |
| MD5 hash: | 38aad8260923a6d3e230c24030885181 |
| humanhash: | ten-whiskey-neptune-zebra |
| File name: | TASK RFQ TK011521.iso |
| Download: | download sample |
| Signature | RemcosRAT |
| File size: | 985'088 bytes |
| First seen: | 2021-01-15 07:06:07 UTC |
| Last seen: | 2021-01-15 07:10:01 UTC |
| File type: | iso |
| MIME type: | application/x-iso9660-image |
| ssdeep | 6144:0mqOybH3m1t7IK6Yj/IDwMME6rfdj+2HICq0+kn+tzVZmB41Dh6nLRjz9i2X4dmY:IbdEeLSPy/3NpE5Nybf8dndsmfCpkK |
| TLSH | 38254A41B7905B11EA7C63BD2816006157F2DFAAF3A8DB1DFC8671A66F73A1400FE582 |
| Reporter |  lowmal3 |
| Tags: | RemcosRAT |
Intelligence
File Origin
# of uploads :
2
# of downloads :
123
Origin country :
n/a
Vendor Threat Intelligence
Threat name:
ByteCode-MSIL.Trojan.Generic
Status:
Suspicious
First seen:
2021-01-15 01:34:40 UTC
AV detection:
5 of 46 (10.87%)
Threat level:
5/5
Detection(s):
Suspicious file
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
File information
The table below shows additional information about this malware sample such as delivery method and external references.
Malspam
exe Delivery method
Distributed via e-mail attachment
Comments
Login required
You need to login to in order to write a comment. Login with your abuse.ch account.