revengerat | 365d0d94f8f8aa65f2eb9a6080d023ca3b3828bbf1c96776a256084958e7b05f | Triage

Submit
Reports

Overview

overview

Static

static

365d0d94f8...5f.exe

windows7_x64

365d0d94f8...5f.exe

windows10-2004_x64

Sharing

General

Target

365d0d94f8f8aa65f2eb9a6080d023ca3b3828bbf1c96776a256084958e7b05f
Size

231KB
Sample

220512-nxkanagadj
MD5

09cd267ca92d6c3dcbaa05e70477962f
SHA1

a9786770752e9f6ca8a49f109cf9fe9783e5aa9d
SHA256

365d0d94f8f8aa65f2eb9a6080d023ca3b3828bbf1c96776a256084958e7b05f
SHA512

87bfe294cdcd711a44976f8aec1aa51d48fe9cc83ed08ab6ef04a1c144fb545874f517d9f9232f1fef2bc154b8da0cda6d3259bf8952ebb683e69b04c09bb83a

Score

10^/10

revengerat guest stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

365d0d94f8f8aa65f2eb9a6080d023ca3b3828bbf1c96776a256084958e7b05f.exe

Resource

win7-20220414-en

revengerat guest stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

365d0d94f8f8aa65f2eb9a6080d023ca3b3828bbf1c96776a256084958e7b05f.exe

Resource

win10v2004-20220414-en

revengerat guest stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

195.206.106.176:7865

Mutex

RV_MUTEX

Targets

- Target
  
  365d0d94f8f8aa65f2eb9a6080d023ca3b3828bbf1c96776a256084958e7b05f
- Size
  
  231KB
- MD5
  
  09cd267ca92d6c3dcbaa05e70477962f
- SHA1
  
  a9786770752e9f6ca8a49f109cf9fe9783e5aa9d
- SHA256
  
  365d0d94f8f8aa65f2eb9a6080d023ca3b3828bbf1c96776a256084958e7b05f
- SHA512
  
  87bfe294cdcd711a44976f8aec1aa51d48fe9cc83ed08ab6ef04a1c144fb545874f517d9f9232f1fef2bc154b8da0cda6d3259bf8952ebb683e69b04c09bb83a
Score

10^/10

revengerat guest stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

revengeratgueststealertrojan

behavioral2

revengeratgueststealertrojan

© 2018-2024

Terms | Privacy