revengerat | ac79c10acc0b7ea11d69f974ec637cb420eebd151147f4ec900ee93ea435461c | Triage

Submit
Reports

Overview

overview

Static

static

ac79c10acc...1c.exe

windows7_x64

ac79c10acc...1c.exe

windows10-2004_x64

Sharing

General

Target

ac79c10acc0b7ea11d69f974ec637cb420eebd151147f4ec900ee93ea435461c
Size

87KB
Sample

220207-wxedeafcf2
MD5

d3c80d0b1faf79d5fba28c2ec1a9e30e
SHA1

c863643acb838dea5cb6e103da86cf483a850e70
SHA256

ac79c10acc0b7ea11d69f974ec637cb420eebd151147f4ec900ee93ea435461c
SHA512

9f12af5253bf9e84beea286958903a567aeeede64c9f30e3626ba08bc8c7572aa95a54a9c12a2bebd0f527314c60b912eb29600dd240e28028ac682a07b67d8e

Score

10^/10

revengerat guest stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

ac79c10acc0b7ea11d69f974ec637cb420eebd151147f4ec900ee93ea435461c.exe

Resource

win7-en-20211208

revengerat guest stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ac79c10acc0b7ea11d69f974ec637cb420eebd151147f4ec900ee93ea435461c.exe

Resource

win10v2004-en-20220112

revengerat guest stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

fa1con-44457.portmap.host:46552

Mutex

RV_MUTEX

Targets

- Target
  
  ac79c10acc0b7ea11d69f974ec637cb420eebd151147f4ec900ee93ea435461c
- Size
  
  87KB
- MD5
  
  d3c80d0b1faf79d5fba28c2ec1a9e30e
- SHA1
  
  c863643acb838dea5cb6e103da86cf483a850e70
- SHA256
  
  ac79c10acc0b7ea11d69f974ec637cb420eebd151147f4ec900ee93ea435461c
- SHA512
  
  9f12af5253bf9e84beea286958903a567aeeede64c9f30e3626ba08bc8c7572aa95a54a9c12a2bebd0f527314c60b912eb29600dd240e28028ac682a07b67d8e
Score

10^/10

revengerat guest stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

revengeratgueststealertrojan

behavioral2

revengeratgueststealertrojan

© 2018-2024

Terms | Privacy