revengerat | 0063f6a96b61507a769319cf8f9a3f97d9bef5e266636e2e0b94c41784f3536e | Triage

Submit
Reports

Overview

overview

Static

static

5

0063f6a96b...6e.exe

windows7_x64

0063f6a96b...6e.exe

windows10-2004_x64

Sharing

General

Target

0063f6a96b61507a769319cf8f9a3f97d9bef5e266636e2e0b94c41784f3536e
Size

967KB
Sample

220502-vqz6vsdeaj
MD5

ee2fe8acd41c86fead2525b4420a5956
SHA1

991f74f3f33de2757af89c1e62090a9703f21fc2
SHA256

0063f6a96b61507a769319cf8f9a3f97d9bef5e266636e2e0b94c41784f3536e
SHA512

ed19c53ae47fa77a6e45c479f40bc240373b76ca63d56c77f15cefb3885bbb4f7bca447a30c34b8846cc611d966d2d21487495ce2ed0d78c627d73c7ef2e7a78

Score

10^/10

revengerat noip stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

0063f6a96b61507a769319cf8f9a3f97d9bef5e266636e2e0b94c41784f3536e.exe

Resource

win7-20220414-en

revengerat noip stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

0063f6a96b61507a769319cf8f9a3f97d9bef5e266636e2e0b94c41784f3536e.exe

Resource

win10v2004-20220414-en

revengerat noip stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

revengerat

Botnet

noip

C2

redlan.hopto.org:3344

Mutex

RV_MUTEX-EUnoWrUUgHRHX

Targets

- Target
  
  0063f6a96b61507a769319cf8f9a3f97d9bef5e266636e2e0b94c41784f3536e
- Size
  
  967KB
- MD5
  
  ee2fe8acd41c86fead2525b4420a5956
- SHA1
  
  991f74f3f33de2757af89c1e62090a9703f21fc2
- SHA256
  
  0063f6a96b61507a769319cf8f9a3f97d9bef5e266636e2e0b94c41784f3536e
- SHA512
  
  ed19c53ae47fa77a6e45c479f40bc240373b76ca63d56c77f15cefb3885bbb4f7bca447a30c34b8846cc611d966d2d21487495ce2ed0d78c627d73c7ef2e7a78
Score

10^/10

revengerat noip stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Drops startup file
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

revengeratnoipstealertrojan

behavioral2

revengeratnoipstealertrojan

© 2018-2024

Terms | Privacy