revengerat | ad4937df3fbf1b24ab75bf35343d6f51e103fb763789d3209e8d05dbe615f67a | Triage

Submit
Reports

Overview

overview

Static

static

ti8Pmv4G.exe

windows7_x64

ti8Pmv4G.exe

windows10_x64

Sharing

General

Target

ti8Pmv4G.exe
Size

17KB
Sample

201222-ae99tycrx2
MD5

8bebd374905cc33e3de17132a7b181c4
SHA1

16b5c5b0de016ef030b966533e374cbfcbb07628
SHA256

ad4937df3fbf1b24ab75bf35343d6f51e103fb763789d3209e8d05dbe615f67a
SHA512

20cbfee084c5cf9a7b8c62a6545a2726c89fc8039f193547d5d98c5d8f596507f7c270844d9ae2888e1c874e66f1c9380b01897644966f2ac8a572b7b5f4ac04

Score

10^/10

revengerat guest stealer trojan

Static task

static1

stealer guest revengerat

Behavioral task

behavioral1

Sample

ti8Pmv4G.exe

Resource

win7v20201028

revengerat guest stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ti8Pmv4G.exe

Resource

win10v20201028

revengerat guest stealer trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

tchelero-55169.portmap.host:55169

tchelero-55169.portmap.host:80

192.168.1.100:55169

192.168.1.100:80

Mutex

RV_MUTEX-LgHRHXJvbCGP

Targets

- Target
  
  ti8Pmv4G.exe
- Size
  
  17KB
- MD5
  
  8bebd374905cc33e3de17132a7b181c4
- SHA1
  
  16b5c5b0de016ef030b966533e374cbfcbb07628
- SHA256
  
  ad4937df3fbf1b24ab75bf35343d6f51e103fb763789d3209e8d05dbe615f67a
- SHA512
  
  20cbfee084c5cf9a7b8c62a6545a2726c89fc8039f193547d5d98c5d8f596507f7c270844d9ae2888e1c874e66f1c9380b01897644966f2ac8a572b7b5f4ac04
Score

10^/10

revengerat guest stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Executes dropped EXE
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

stealerguestrevengerat

behavioral1

revengeratgueststealertrojan

behavioral2

revengeratgueststealertrojan

© 2018-2024

Terms | Privacy