revengerat | 5812bd07a6aa5a3a5418c2eba8b1f5f1f7491581baeb3488d71fbca0bfb892a2 | Triage

Submit
Reports

Overview

overview

Static

static

5812bd07a6...a2.exe

windows7_x64

5812bd07a6...a2.exe

windows10-2004_x64

Sharing

General

Target

5812bd07a6aa5a3a5418c2eba8b1f5f1f7491581baeb3488d71fbca0bfb892a2
Size

190KB
Sample

220512-n9t1madgd7
MD5

a1d732c8477b8e487981c475cfb4fda0
SHA1

afffdaf652d9445aba3f9c3809d555c7224ad201
SHA256

5812bd07a6aa5a3a5418c2eba8b1f5f1f7491581baeb3488d71fbca0bfb892a2
SHA512

0c2db6108881de5fe86d7bd198adb2770b7653c064ed29ce4bb48a9deb86421be8fd6a1424fd2a491ca2f804da2f9d9f21470a5545255746a1a55192500819ff

Score

10^/10

revengerat persistence stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

5812bd07a6aa5a3a5418c2eba8b1f5f1f7491581baeb3488d71fbca0bfb892a2.exe

Resource

win7-20220414-en

revengerat stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5812bd07a6aa5a3a5418c2eba8b1f5f1f7491581baeb3488d71fbca0bfb892a2.exe

Resource

win10v2004-20220414-en

revengerat persistence stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  5812bd07a6aa5a3a5418c2eba8b1f5f1f7491581baeb3488d71fbca0bfb892a2
- Size
  
  190KB
- MD5
  
  a1d732c8477b8e487981c475cfb4fda0
- SHA1
  
  afffdaf652d9445aba3f9c3809d555c7224ad201
- SHA256
  
  5812bd07a6aa5a3a5418c2eba8b1f5f1f7491581baeb3488d71fbca0bfb892a2
- SHA512
  
  0c2db6108881de5fe86d7bd198adb2770b7653c064ed29ce4bb48a9deb86421be8fd6a1424fd2a491ca2f804da2f9d9f21470a5545255746a1a55192500819ff
Score

10^/10

revengerat stealer trojan persistence
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Registry Run Keys / Startup Folder

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

revengeratstealertrojan

behavioral2

revengeratpersistencestealertrojan

© 2018-2024

Terms | Privacy