Overview

overview

10

Static

static

1

REVENGER.jpg.ps1

windows7-x64

10

REVENGER.jpg.ps1

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    REVENGER.jpg.ps1

  • Size

    801KB

  • Sample

    230604-y3hdcsdf43

  • MD5

    f963af777af116a90d7c256a3a3f6a11

  • SHA1

    b2eaea010484d1c63d244c42b3b3fbc5d94f5174

  • SHA256

    e2eb57808e705679f40f5437265e14c3d5d4f35bb0b0ad337cf02e4572fe32e5

  • SHA512

    7579ed06081798e425c4d37f8069927ab179bbd829d60abe9754ef2a146442a40ce32246287466c58792f01393d49b655402a2ba930ead79379fb1fa73f7fb0c

  • SSDEEP

    12288:OZmTk3LmZmTk3Lv2RDsUU1Vq2RDsUU1V72RDsUU1V2:OZmTAKZmTAr25gq25g725g2

Score
10/10
revengeratnyancatrevengetrojan

Malware Config

Extracted

Family

revengerat

Botnet

NyanCatRevenge

C2

m7.ddns.com.br:5222

Mutex

30c2ac3031a0

Targets

    • Target

      REVENGER.jpg.ps1

    • Size

      801KB

    • MD5

      f963af777af116a90d7c256a3a3f6a11

    • SHA1

      b2eaea010484d1c63d244c42b3b3fbc5d94f5174

    • SHA256

      e2eb57808e705679f40f5437265e14c3d5d4f35bb0b0ad337cf02e4572fe32e5

    • SHA512

      7579ed06081798e425c4d37f8069927ab179bbd829d60abe9754ef2a146442a40ce32246287466c58792f01393d49b655402a2ba930ead79379fb1fa73f7fb0c

    • SSDEEP

      12288:OZmTk3LmZmTk3Lv2RDsUU1Vq2RDsUU1V72RDsUU1V2:OZmTAKZmTAr25gq25g725g2

    Score
    10/10
    revengeratnyancatrevengetrojan

    • RevengeRAT

      Remote-access trojan with a wide range of capabilities.

      trojanrevengerat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks