revengerat | 4af8536f98e03dfc5f5be911ff79ef6c0cbc8b942c855b0dcac530b3058f34b5 | Triage

Sharing

General

Target

bCZe.exe
Size

14KB
Sample

220713-zw6m2sdgg8
MD5

352e1de7d7a5ab9896dd809e57e231b7
SHA1

ced36a4fb72fade359d0dea6585bc5f1d6dad9d5
SHA256

4af8536f98e03dfc5f5be911ff79ef6c0cbc8b942c855b0dcac530b3058f34b5
SHA512

8774fabb9917ac6ee00ff3136d061aed3918b078d03d43594fcfa8063af9bcb08c5b1464bc4e81aa50145b48483105c564e13ae7045a3153bd86482ab9d460b0

Score

10^/10

revengerat nyancatrevenge suricata

Malware Config

Extracted

Family

revengerat

Botnet

NyanCatRevenge

C2

alice2019.myftp.biz:6000

Mutex

3ad336abe5334ed5871

Targets

- Target
  
  bCZe.exe
- Size
  
  14KB
- MD5
  
  352e1de7d7a5ab9896dd809e57e231b7
- SHA1
  
  ced36a4fb72fade359d0dea6585bc5f1d6dad9d5
- SHA256
  
  4af8536f98e03dfc5f5be911ff79ef6c0cbc8b942c855b0dcac530b3058f34b5
- SHA512
  
  8774fabb9917ac6ee00ff3136d061aed3918b078d03d43594fcfa8063af9bcb08c5b1464bc4e81aa50145b48483105c564e13ae7045a3153bd86482ab9d460b0
Score

10^/10

suricata
- suricata: ET MALWARE MSIL/Revenge-RAT Keep-Alive Activity (Outbound) M2
  suricata: ET MALWARE MSIL/Revenge-RAT Keep-Alive Activity (Outbound) M2
  suricata
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

nyancatrevengerevengerat

behavioral1

behavioral2