Overview

overview

10

Static

static

10

Revenge-RA...nt.exe

windows10-2004-x64

10

Revenge-RA...xe.exe

windows10-2004-x64

1

Revenge-RA...SC.exe

windows10-2004-x64

1

Revenge-RA...it.exe

windows10-2004-x64

1

Revenge-RA...xe.exe

windows10-2004-x64

1

Revenge-RA...64.exe

windows10-2004-x64

1

Revenge-RA...px.exe

windows10-2004-x64

7

Revenge-RA...RC.exe

windows10-2004-x64

1

Revenge-RA...er.exe

windows10-2004-x64

1

Revenge-RA...or.exe

windows10-2004-x64

7

Revenge-RA...ss.exe

windows10-2004-x64

1

Revenge-RA...er.exe

windows10-2004-x64

1

Revenge-RA....3.exe

windows10-2004-x64

1

Revenge-RA...er.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    241s
  • max time network
    178s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230621-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230621-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26-06-2023 05:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Revenge-RAT v0.3/Revenge-RAT v0.3/Revenge-RAT v0.3.exe

  • Size

    13.7MB

  • MD5

    531d8b4ac8f7eb827d62424169321b2b

  • SHA1

    a269563cbfa32b667f89d709eebc0b6c08b57272

  • SHA256

    6b2324bb337f722067e6c1b5cef5f64e89338e2beccf95289aaaa2af8a0556b9

  • SHA512

    24fb3d7430cdd6fa4a80af2982f4334db722e97a0286e97bfc56600d27598710962641837a368a133d6f6a4bd8372f00e9dd49e9c79de14653cbf7360c3e2872

  • SSDEEP

    98304:HsCsgsZshXVTRZjqFzlV2QpEBjPpRctHtbNqteTzsx9os5nsdhT9s:TRZjq7gwtW9Zi

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SendNotifyMessage 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Revenge-RAT v0.3\Revenge-RAT v0.3\Revenge-RAT v0.3.exe
    "C:\Users\Admin\AppData\Local\Temp\Revenge-RAT v0.3\Revenge-RAT v0.3\Revenge-RAT v0.3.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:1264

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\Revenge-RAT v0.3\Revenge-RAT v0.3\Database\2023-06-26\6-00-13 AM.log
    Filesize

    97B

    MD5

    d1b9b832fe053be6ee98e0db08211651

    SHA1

    add6462b20d4887494a5c60d87158617da6b22de

    SHA256

    bed2cfe8e35ea256468a81851ce37d4a68c9b605adfc852d266f8497f13148ba

    SHA512

    f8e64e5c2d9787a81c28e40c463b30c399dd52430d7c892e1dd7814443fa372ead34c264b8f624c3faff4c532be8e7e4c36e8bd3e86843dcf3604be06dd91102

    Download Submit
  • memory/1264-133-0x000002B9906A0000-0x000002B991464000-memory.dmp
    Filesize

    13.8MB

    Download
  • memory/1264-134-0x000002B9AB950000-0x000002B9AB960000-memory.dmp
    Filesize

    64KB

    Download
  • memory/1264-135-0x000002B9AB950000-0x000002B9AB960000-memory.dmp
    Filesize

    64KB

    Download
  • memory/1264-136-0x000002B9AB950000-0x000002B9AB960000-memory.dmp
    Filesize

    64KB

    Download
  • memory/1264-137-0x000002B9AB950000-0x000002B9AB960000-memory.dmp
    Filesize

    64KB

    Download
  • memory/1264-154-0x000002B9AB950000-0x000002B9AB960000-memory.dmp
    Filesize

    64KB

    Download
  • memory/1264-155-0x000002B9AB950000-0x000002B9AB960000-memory.dmp
    Filesize

    64KB

    Download