Overview

overview

10

Static

static

10

xK7CzZLP.exe

windows7_x64

1

xK7CzZLP.exe

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    xK7CzZLP.exe

  • Size

    16KB

  • Sample

    201009-kjyp1hczex

  • MD5

    3079e5385faae7e550f0c7389a8588dc

  • SHA1

    74809bc4296e3fae7a7d323407c9731b0180f354

  • SHA256

    433db34463ffa758a4fbe117127fddab7db0adbfb72ce7a280ea05fd79a6eec8

  • SHA512

    7ee76b7375cdcb564c8fa65f9ae2a1bd02fdb2fec53eed0c4f87d7a7f7a3b1e0cd6f93f7c6223c131ea1b988f395c0c8d037b412d0bfacc18f7bbcfeff5c1d97

Score
10/10
revengeratinsert-coin

Malware Config

Extracted

Family

revengerat

Botnet

INSERT-COIN

C2

3.tcp.ngrok.io:24041

Mutex

RV_MUTEX

Targets

    • Target

      xK7CzZLP.exe

    • Size

      16KB

    • MD5

      3079e5385faae7e550f0c7389a8588dc

    • SHA1

      74809bc4296e3fae7a7d323407c9731b0180f354

    • SHA256

      433db34463ffa758a4fbe117127fddab7db0adbfb72ce7a280ea05fd79a6eec8

    • SHA512

      7ee76b7375cdcb564c8fa65f9ae2a1bd02fdb2fec53eed0c4f87d7a7f7a3b1e0cd6f93f7c6223c131ea1b988f395c0c8d037b412d0bfacc18f7bbcfeff5c1d97

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks