revengerat | f167685c3f56500736c2946ef25ddffe3e7a8b6b92d30c3d065bebfdbae70d73 | Triage

Submit
Reports

Overview

overview

Static

static

f167685c3f...73.exe

windows7_x64

f167685c3f...73.exe

windows10-2004_x64

Sharing

General

Target

f167685c3f56500736c2946ef25ddffe3e7a8b6b92d30c3d065bebfdbae70d73
Size

56KB
Sample

220524-s96rmscbhq
MD5

dd647c179fae75262e8c2a8a3bd433e3
SHA1

768f0723d57dcd9a83bb66b16451c12d50c81f89
SHA256

f167685c3f56500736c2946ef25ddffe3e7a8b6b92d30c3d065bebfdbae70d73
SHA512

db99b7f472e3d8f03f85a32967d4b446ccda449e83a00c2eb6738107c076e984d57774bca0235383cb5f7fbf1a344fd54a7ad5626b08d068e96228100eb46e20

Score

10^/10

revengerat stealer trojan

Static task

static1

stealer revengerat

Behavioral task

behavioral1

Sample

f167685c3f56500736c2946ef25ddffe3e7a8b6b92d30c3d065bebfdbae70d73.exe

Resource

win7-20220414-en

revengerat stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

f167685c3f56500736c2946ef25ddffe3e7a8b6b92d30c3d065bebfdbae70d73.exe

Resource

win10v2004-20220414-en

revengerat stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  f167685c3f56500736c2946ef25ddffe3e7a8b6b92d30c3d065bebfdbae70d73
- Size
  
  56KB
- MD5
  
  dd647c179fae75262e8c2a8a3bd433e3
- SHA1
  
  768f0723d57dcd9a83bb66b16451c12d50c81f89
- SHA256
  
  f167685c3f56500736c2946ef25ddffe3e7a8b6b92d30c3d065bebfdbae70d73
- SHA512
  
  db99b7f472e3d8f03f85a32967d4b446ccda449e83a00c2eb6738107c076e984d57774bca0235383cb5f7fbf1a344fd54a7ad5626b08d068e96228100eb46e20
Score

10^/10

revengerat stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

stealerrevengerat

behavioral1

revengeratstealertrojan

behavioral2

revengeratstealertrojan

© 2018-2024

Terms | Privacy