win.remcos (Back to overview)

Remcos

Actor(s): The Gorgon Group

URLhaus          

There is no description at this point.

References
https://blog.talosintelligence.com/2018/08/picking-apart-remcos.html
https://researchcenter.paloaltonetworks.com/2018/08/unit42-gorgon-group-slithering-nation-state-cybercrime/
http://malware-traffic-analysis.net/2017/12/22/index.html
https://blog.fortinet.com/2017/02/14/remcos-a-new-rat-in-the-wild-2
https://krabsonsecurity.com/2018/03/02/analysing-remcos-rats-executable/
https://myonlinesecurity.co.uk/fake-order-spoofed-from-finchers-ltd-sankyo-rubber-delivers-remcos-rat-via-ace-attachments/
https://www.riskiq.com/blog/labs/spear-phishing-turkish-defense-contractors/
https://secrary.com/ReversingMalware/RemcosRAT/