revengerat | 7dcf9edbb6c768e78ac0f21c2096f64ae4a2502b687435b578cc2a1a828384a2 | Triage

Submit
Reports

Overview

overview

Static

static

7dcf9edbb6...a2.exe

windows7_x64

7dcf9edbb6...a2.exe

windows10-2004_x64

Sharing

General

Target

7dcf9edbb6c768e78ac0f21c2096f64ae4a2502b687435b578cc2a1a828384a2
Size

17KB
Sample

220708-jvkfesadd9
MD5

3e2021ca808317e1eb7c2e0a0c8ae009
SHA1

713c6d2139f0f0a00b911d2b3ac2a5cdda08995b
SHA256

7dcf9edbb6c768e78ac0f21c2096f64ae4a2502b687435b578cc2a1a828384a2
SHA512

73e64d3adf64310ee56d4c2774cc318fae633e1cb3f80df15436a37c4a8185ab881a3906ec99c360f8a8fa3e8341c06898f26233ffe6462eb708947bc8ef9371

Score

10^/10

revengerat guest stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

7dcf9edbb6c768e78ac0f21c2096f64ae4a2502b687435b578cc2a1a828384a2.exe

Resource

win7-20220414-en

revengerat guest stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

7dcf9edbb6c768e78ac0f21c2096f64ae4a2502b687435b578cc2a1a828384a2.exe

Resource

win10v2004-20220414-en

revengerat guest stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

dnstext.publicvm.com:111

Mutex

RV_MUTEX-DxjEexVoqqNL

Targets

- Target
  
  7dcf9edbb6c768e78ac0f21c2096f64ae4a2502b687435b578cc2a1a828384a2
- Size
  
  17KB
- MD5
  
  3e2021ca808317e1eb7c2e0a0c8ae009
- SHA1
  
  713c6d2139f0f0a00b911d2b3ac2a5cdda08995b
- SHA256
  
  7dcf9edbb6c768e78ac0f21c2096f64ae4a2502b687435b578cc2a1a828384a2
- SHA512
  
  73e64d3adf64310ee56d4c2774cc318fae633e1cb3f80df15436a37c4a8185ab881a3906ec99c360f8a8fa3e8341c06898f26233ffe6462eb708947bc8ef9371
Score

10^/10

revengerat guest stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

revengeratgueststealertrojan

behavioral2

revengeratgueststealertrojan

© 2018-2024

Terms | Privacy