revengerat | f6b2c58f9846adcb295edd3c8a5beaec31fff3bc98f6503d04e95be3f9f072e8 | Triage

Sharing

General

Target

f6b2c58f9846adcb295edd3c8a5beaec31fff3bc98f6503d04e95be3f9f072e8
Size

24KB
Sample

220331-r7jzeshfek
MD5

c25b797d6737751936766cd50e26d725
SHA1

dfb3bfb53ce0430c8af1ee7b145408d63b1bec67
SHA256

f6b2c58f9846adcb295edd3c8a5beaec31fff3bc98f6503d04e95be3f9f072e8
SHA512

28871ab7d533a22d78545dd740df0c8b93ab0e9e0d81901faaf30d4656c953162ee1e049dcfbba0050405e7441eee77f056445653a8bd927963b8f81d9bf8eed

Score

10^/10

revengerat mr_ahmed

Malware Config

Extracted

Family

revengerat

Botnet

MR_ahmed

C2

45.147.230.231:2222

Mutex

c416f58db13c4

Targets

- Target
  
  f6b2c58f9846adcb295edd3c8a5beaec31fff3bc98f6503d04e95be3f9f072e8
- Size
  
  24KB
- MD5
  
  c25b797d6737751936766cd50e26d725
- SHA1
  
  dfb3bfb53ce0430c8af1ee7b145408d63b1bec67
- SHA256
  
  f6b2c58f9846adcb295edd3c8a5beaec31fff3bc98f6503d04e95be3f9f072e8
- SHA512
  
  28871ab7d533a22d78545dd740df0c8b93ab0e9e0d81901faaf30d4656c953162ee1e049dcfbba0050405e7441eee77f056445653a8bd927963b8f81d9bf8eed
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

mr_ahmedrevengerat

behavioral1

behavioral2