General

  • Target

    38nPFNXf.exe

  • Size

    101KB

  • Sample

    201208-3xa8c8qpvn

  • MD5

    c6e9d1c5ceaea3d5d95f528e963a61fa

  • SHA1

    ba3470fe5a55fae38359d8db822759e461808228

  • SHA256

    202ece775db1ba2d03b0a2dce3572ebef19f6ba2bdc0a19a16e988bd5efae171

  • SHA512

    65e8ef7dd9c2c8cc59ac7f552843d9c8b487430b04e11724ad81dfc662d9da3e57e452857801dd465ab5279d83e985ac5700258e397550dd0ccc5b3f66bf649b

Malware Config

Extracted

Family

revengerat

Botnet

Mr x HACKER

C2

xzim1-20774.portmap.io:20774

Mutex

RV_MUTEX

Targets

    • Target

      38nPFNXf.exe

    • Size

      101KB

    • MD5

      c6e9d1c5ceaea3d5d95f528e963a61fa

    • SHA1

      ba3470fe5a55fae38359d8db822759e461808228

    • SHA256

      202ece775db1ba2d03b0a2dce3572ebef19f6ba2bdc0a19a16e988bd5efae171

    • SHA512

      65e8ef7dd9c2c8cc59ac7f552843d9c8b487430b04e11724ad81dfc662d9da3e57e452857801dd465ab5279d83e985ac5700258e397550dd0ccc5b3f66bf649b

    Score
    1/10

MITRE ATT&CK Matrix ATT&CK v6

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks