revengerat | 887a5f4352e0843db758b3f24510b279e45df0402bbaeaa0f140e23cff2ff7f1 | Triage

Submit
Reports

Overview

overview

Static

static

000.exe

windows10-2004-x64

Resubmissions

10-06-2023 17:44

230610-wbfpcagb5s 10

10-06-2023 17:33

230610-v5b3ksgb3y 10

Sharing

General

Target

000.exe
Size

141KB
Sample

230610-wbfpcagb5s
MD5

615a60a3ed965581edbcca2b9a26646e
SHA1

44228940403b156db8aef47c2807fd8b8cd382df
SHA256

887a5f4352e0843db758b3f24510b279e45df0402bbaeaa0f140e23cff2ff7f1
SHA512

c6db373c283703994fa5f28405e0532a98c35763cf772e61f714c9f0acc086a09ce91765a7f1b42e66ea35878a75a0c1d881077c2678b8192e15205006e5ad18
SSDEEP

3072:Wh7Lc4VoziXk1nwqEgsCFlkan2hlxVjSXUg:WZcJziXIwxMQ5

Score

10^/10

revengerat stealer trojan

Static task

static1

stealer revengerat

3 signatures

Behavioral task

behavioral1

Sample

000.exe

Resource

win10v2004-20230220-en

revengerat stealer trojan

windows10-2004-x64

8 signatures

1800 seconds

Malware Config

Targets

- Target
  
  000.exe
- Size
  
  141KB
- MD5
  
  615a60a3ed965581edbcca2b9a26646e
- SHA1
  
  44228940403b156db8aef47c2807fd8b8cd382df
- SHA256
  
  887a5f4352e0843db758b3f24510b279e45df0402bbaeaa0f140e23cff2ff7f1
- SHA512
  
  c6db373c283703994fa5f28405e0532a98c35763cf772e61f714c9f0acc086a09ce91765a7f1b42e66ea35878a75a0c1d881077c2678b8192e15205006e5ad18
- SSDEEP
  
  3072:Wh7Lc4VoziXk1nwqEgsCFlkan2hlxVjSXUg:WZcJziXIwxMQ5
Score

10^/10

revengerat stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

stealerrevengerat

behavioral1

revengeratstealertrojan

© 2018-2024

Terms | Privacy