Overview

overview

6

Static

static

1

Revo Unins...le.exe

windows10-2004-x64

1

Revo Unins...ar.exe

windows10-2004-x64

1

Revo Unins...md.exe

windows10-2004-x64

6

Revo Unins...ro.exe

windows10-2004-x64

1

Revo Unins...lt.exe

windows10-2004-x64

Revo Unins...lt.exe

windows10-2004-x64

Revo Unins...lt.exe

windows10-2004-x64

Revo Unins...ar.exe

windows10-2004-x64

1

Revo Unins...md.exe

windows10-2004-x64

6

Revo Unins...ro.exe

windows10-2004-x64

1

Revo Unins...lt.exe

windows10-2004-x64

Revo Unins...lt.exe

windows10-2004-x64

Revo Unins...lt.exe

windows10-2004-x64

Analysis

  • max time kernel
    30s
  • max time network
    35s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/04/2023, 19:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Revo Uninstaller Pro 5.1.1 Portable Win x64/x64/RevoCmd.exe

  • Size

    86KB

  • MD5

    97d81b3140a3c7f8169968f4c219b187

  • SHA1

    ff71168ba98f8bca1b6eba7c89a9f01c370696d6

  • SHA256

    ac7aee6f58cdaa072a87d770d9a011dd450412ef81c81fa8df327080f10ade1c

  • SHA512

    d25e99da43b99920fb17f0f8876a25c932fd2580a02d0c4556d3f0cef1deb89816d1751659603761cc5158c564f97129ff1b4aaf931e98374fb1302ddf1c0114

  • SSDEEP

    1536:Zfq2fdmQUTm5VHT7BWjdZFk81eLE19D9z3TgR551ZbOb1/Ah0:ZfX0JqvHTIfmAe69JT855XbObX

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\Revo Uninstaller Pro 5.1.1 Portable Win x64\x64\RevoCmd.exe
    "C:\Users\Admin\AppData\Local\Temp\Revo Uninstaller Pro 5.1.1 Portable Win x64\x64\RevoCmd.exe"
    1⤵
      PID:732

    Network

    MITRE ATT&CK Enterprise v6

    Replay Monitor

    Loading Replay Monitor...

    Downloads