revengerat | fb5d110ced698b06c6cb8c7112792a2d37c579dcd9bde808310cb8dc88e16d9c | Triage

Resubmissions

06-11-2020 11:11

201106-6hvbcfqlqe 10

Sharing

General

Target

fb5d110ced698b06c6cb8c7112792a2d37c579dcd9bde808310cb8dc88e16d9c
Size

19KB
Sample

201106-6hvbcfqlqe
MD5

6029c37a32d7e4951449e197d4850213
SHA1

6ed7bb726b1e04d6858c084bc9bf475a13b77c95
SHA256

fb5d110ced698b06c6cb8c7112792a2d37c579dcd9bde808310cb8dc88e16d9c
SHA512

bf3639710e259aa38d0cd028071408bdd41c01ee1bd0ea70a16ada78b848c63886854ed40407242e3a68fd9b5444fce2e6ddc050e0c8a2f578b00f43b6c52b6f

Score

10^/10

revengerat insert-coin stealer

Malware Config

Extracted

Family

revengerat

Botnet

INSERT-COIN

C2

3.tcp.ngrok.io:24041

Mutex

RV_MUTEX

Targets

- Target
  
  fb5d110ced698b06c6cb8c7112792a2d37c579dcd9bde808310cb8dc88e16d9c
- Size
  
  19KB
- MD5
  
  6029c37a32d7e4951449e197d4850213
- SHA1
  
  6ed7bb726b1e04d6858c084bc9bf475a13b77c95
- SHA256
  
  fb5d110ced698b06c6cb8c7112792a2d37c579dcd9bde808310cb8dc88e16d9c
- SHA512
  
  bf3639710e259aa38d0cd028071408bdd41c01ee1bd0ea70a16ada78b848c63886854ed40407242e3a68fd9b5444fce2e6ddc050e0c8a2f578b00f43b6c52b6f
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

stealerinsert-coinrevengerat

behavioral1

behavioral2