revengerat | 06d44e503ebaccb58728f852ed0214bc6fa9a6d493022d2d28e72d04859cee20 | Triage

Sharing

General

Target

06d44e503ebaccb58728f852ed0214bc6fa9a6d493022d2d28e72d04859cee20
Size

16KB
Sample

220205-yrbfnsfaa2
MD5

3773d6a8c5ef735af66c30d65946829a
SHA1

eb0987f7e2163680b167f42607a8c8fd0401420c
SHA256

06d44e503ebaccb58728f852ed0214bc6fa9a6d493022d2d28e72d04859cee20
SHA512

b036bee18ede95cc58054d09cb85fbe39b6193e851abb598d09de37b796b085e02352ac4d042a2a72b7826492632e9af5b6addcd4f5c1a9308f8355bffb6bcd7

Score

10^/10

revengerat guest stealer

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

127.0.0.1:8080

Mutex

RV_MUTEX

Targets

- Target
  
  06d44e503ebaccb58728f852ed0214bc6fa9a6d493022d2d28e72d04859cee20
- Size
  
  16KB
- MD5
  
  3773d6a8c5ef735af66c30d65946829a
- SHA1
  
  eb0987f7e2163680b167f42607a8c8fd0401420c
- SHA256
  
  06d44e503ebaccb58728f852ed0214bc6fa9a6d493022d2d28e72d04859cee20
- SHA512
  
  b036bee18ede95cc58054d09cb85fbe39b6193e851abb598d09de37b796b085e02352ac4d042a2a72b7826492632e9af5b6addcd4f5c1a9308f8355bffb6bcd7
Score

4^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

stealerguestrevengerat

behavioral1

behavioral2