Overview

overview

10

Static

static

10

rhJ1fu67.exe

windows7_x64

1

rhJ1fu67.exe

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    rhJ1fu67.exe

  • Size

    14KB

  • Sample

    201201-s6tsqan4z2

  • MD5

    8a04ad50879e7d1e48165d780410466a

  • SHA1

    7a1f12906e4cbd4f3a586c838473d7ce6ac37969

  • SHA256

    09af792208641417d02d764a8b97d92c3c1b40638143d5224c0f6b36f5579a29

  • SHA512

    8bbb17c7f92abdc039e7a925ddebfe539b4dab2d7962447b35d0123dcb022a4f6cee57d7c0225de06876856833ea9d0bf32132ec855bcb71ca09fe9fbc6d33e0

Score
10/10
revengeratnyancatrevenge

Malware Config

Extracted

Family

revengerat

Botnet

NyanCatRevenge

C2

rdp2.dgsn.fr:333

Mutex

9f3dbaae30

Targets

    • Target

      rhJ1fu67.exe

    • Size

      14KB

    • MD5

      8a04ad50879e7d1e48165d780410466a

    • SHA1

      7a1f12906e4cbd4f3a586c838473d7ce6ac37969

    • SHA256

      09af792208641417d02d764a8b97d92c3c1b40638143d5224c0f6b36f5579a29

    • SHA512

      8bbb17c7f92abdc039e7a925ddebfe539b4dab2d7962447b35d0123dcb022a4f6cee57d7c0225de06876856833ea9d0bf32132ec855bcb71ca09fe9fbc6d33e0

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks