revengerat | 011d513517baf505a49e5f051b18d5dcb0f8a2c9a53c778a2ffffab931572b97 | Triage

Submit
Reports

Overview

overview

Static

static

011d513517...97.exe

windows7_x64

1

011d513517...97.exe

windows10-2004_x64

1

Sharing

Static task

static1

nyancatrevenge revengerat

Behavioral task

behavioral1

Sample

011d513517baf505a49e5f051b18d5dcb0f8a2c9a53c778a2ffffab931572b97.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

011d513517baf505a49e5f051b18d5dcb0f8a2c9a53c778a2ffffab931572b97.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

011d513517baf505a49e5f051b18d5dcb0f8a2c9a53c778a2ffffab931572b97
Size

24KB
MD5

fc94d00263a18cf08a86b910b4165cd7
SHA1

feadd83a57726a5d1e2d19c60ace758a6e29420e
SHA256

011d513517baf505a49e5f051b18d5dcb0f8a2c9a53c778a2ffffab931572b97
SHA512

bd25c99335a9bdb9233645bfb5023b4a851e4e7cd3646fb94eb8fa8e502c4d4c222f5d72c8860d753b46df26cd56fd5bded7ed99404ada6b89cfffe7ebaec641
SSDEEP

192:1D+8Pa9S8kjYTDGgbcp4LlSjIKSAfF9aEOnryD91ABkGxVXEcqoN0jERJg:1DP/jYTDGggpdIK3fJWyDbAnxEoNs

Score

10^/10

nyancatrevenge revengerat

Malware Config

Extracted

Family

revengerat

Botnet

NyanCatRevenge

C2

clee.no-ip.ca:1712

Mutex

c29e887c97ab42

Signatures

Revengerat family
revengerat

Files

011d513517baf505a49e5f051b18d5dcb0f8a2c9a53c778a2ffffab931572b97
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy