revengerat | 7a3d37a6aa63c8cda5e1029a19644d5890d8dd723f370993abea447ddc936c68 | Triage

Submit
Reports

Overview

overview

Static

static

30de81edb8...4a.exe

windows7_x64

30de81edb8...4a.exe

windows10_x64

Sharing

General

Target

30de81edb8646763d284c5f9a401a04a
Size

73KB
Sample

201117-t6k5jf434s
MD5

30de81edb8646763d284c5f9a401a04a
SHA1

1ef306a9fabb9b5e1ec3d4bcb122de49c5eaf105
SHA256

7a3d37a6aa63c8cda5e1029a19644d5890d8dd723f370993abea447ddc936c68
SHA512

022450d2c03a11a8a99d5d570f261bb8ea2432528bc0a6da1dac74b4a3f21abd4c30c4d5b19aee5e2be160b39999444206c6fa7717fa9fd757eaaaf67d28cc19

Score

10^/10

revengerat stealer trojan

Static task

static1

stealer revengerat

Behavioral task

behavioral1

Sample

30de81edb8646763d284c5f9a401a04a.exe

Resource

win7v20201028

revengerat stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

30de81edb8646763d284c5f9a401a04a.exe

Resource

win10v20201028

revengerat stealer trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  30de81edb8646763d284c5f9a401a04a
- Size
  
  73KB
- MD5
  
  30de81edb8646763d284c5f9a401a04a
- SHA1
  
  1ef306a9fabb9b5e1ec3d4bcb122de49c5eaf105
- SHA256
  
  7a3d37a6aa63c8cda5e1029a19644d5890d8dd723f370993abea447ddc936c68
- SHA512
  
  022450d2c03a11a8a99d5d570f261bb8ea2432528bc0a6da1dac74b4a3f21abd4c30c4d5b19aee5e2be160b39999444206c6fa7717fa9fd757eaaaf67d28cc19
Score

10^/10

revengerat stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Drops startup file
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

stealerrevengerat

behavioral1

revengeratstealertrojan

behavioral2

revengeratstealertrojan

© 2018-2024

Terms | Privacy