Overview

overview

10

Static

static

10

NEAS.390ea...JC.exe

windows7-x64

1

NEAS.390ea...JC.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.390ea93706aa2758f00e59c1293cbb20_JC.exe

  • Size

    32KB

  • MD5

    390ea93706aa2758f00e59c1293cbb20

  • SHA1

    f2b1e7994aeee3a324960f35408ee907647030fc

  • SHA256

    d5a9845439dd8c045d7ef1c9da41bbbb82fd3a41a6f6f0328084c3b01b24b781

  • SHA512

    6d0d58b96b16a089b3824ce5b10c401fb86592c0ee451e9374475efcdb0178df7ff341243a09af72fe563670dbd82d3108f85c49c256232e204ff65a418f3c17

  • SSDEEP

    384:fQgignhH3CWTfR426zvRPJnMxZWK4sRIDPXM0sVKAyHwG9:fQF6hyWTfjRZzI7PJ

Score
10/10
stealerguestrevengerat

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

127.0.0.1:443

Mutex

RV_MUTEX

Signatures

  • RevengeRat Executable 1 IoCs
    stealer
  • Revengerat family
    revengerat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.390ea93706aa2758f00e59c1293cbb20_JC.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections