General

  • Target

    CheckerUI.exe

  • Size

    74.6MB

  • Sample

    230806-vefm3sce9t

  • MD5

    a4859e7882cfda9b322227a04de4c630

  • SHA1

    d707f9819755a185ee5f07a1320524759ea167c5

  • SHA256

    2b8e381da6238a4378bec9b742ce335f455d7aa34cf841a93ebc33f9fb031b9c

  • SHA512

    40b94e4881db0263fe25ed5aff79f356f61b7c95622fb76358c6f24fa7165b45104ea0a74f9eb3e8087b76d16b256109c202abd4847857a53a4bdc129d2de6f6

  • SSDEEP

    786432:5LHI9933vDZbwLLWhA3lIQtGDSbFQZuFAHbwKSllPq4xn:033vGLLWhKkSllPq4x

Malware Config

Targets

    • Target

      CheckerUI.exe

    • Size

      74.6MB

    • MD5

      a4859e7882cfda9b322227a04de4c630

    • SHA1

      d707f9819755a185ee5f07a1320524759ea167c5

    • SHA256

      2b8e381da6238a4378bec9b742ce335f455d7aa34cf841a93ebc33f9fb031b9c

    • SHA512

      40b94e4881db0263fe25ed5aff79f356f61b7c95622fb76358c6f24fa7165b45104ea0a74f9eb3e8087b76d16b256109c202abd4847857a53a4bdc129d2de6f6

    • SSDEEP

      786432:5LHI9933vDZbwLLWhA3lIQtGDSbFQZuFAHbwKSllPq4xn:033vGLLWhKkSllPq4x

    • RevengeRAT

      Remote-access trojan with a wide range of capabilities.

    • RevengeRat Executable

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks