revengerat | f126b520127b77674aa45cb34a28d61b7c442808801eafbf26352d05e459ef3f | Triage

Submit
Reports

Overview

overview

Static

static

63af5f7975...18.exe

windows7-x64

63af5f7975...18.exe

windows10-2004-x64

5

Sharing

General

Target

63af5f7975cc09d8c262f73b283e7e75_JaffaCakes118
Size

173KB
Sample

240401-bn62vahg96
MD5

63af5f7975cc09d8c262f73b283e7e75
SHA1

ab423e316469d311b145cedfb62d1a44a463ead4
SHA256

f126b520127b77674aa45cb34a28d61b7c442808801eafbf26352d05e459ef3f
SHA512

e86339e320acabbaaad197fb05e489dec46eef55f4967bad65506fb4a854885325de618a60a7b84a128743e2c252adfed7644edeb691169317cb0f2495369bdd
SSDEEP

1536:c9oSzLN0uUsyaObcsrEzBTTUphYjevWRyFMqIDH:8oSzphUU9BTgYaWYiqIDH

Score

10^/10

revengerat stealer trojan

Static task

static1

stealer revengerat

3 signatures

Behavioral task

behavioral1

Sample

63af5f7975cc09d8c262f73b283e7e75_JaffaCakes118.exe

Resource

win7-20240221-en

revengerat stealer trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

63af5f7975cc09d8c262f73b283e7e75_JaffaCakes118.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  63af5f7975cc09d8c262f73b283e7e75_JaffaCakes118
- Size
  
  173KB
- MD5
  
  63af5f7975cc09d8c262f73b283e7e75
- SHA1
  
  ab423e316469d311b145cedfb62d1a44a463ead4
- SHA256
  
  f126b520127b77674aa45cb34a28d61b7c442808801eafbf26352d05e459ef3f
- SHA512
  
  e86339e320acabbaaad197fb05e489dec46eef55f4967bad65506fb4a854885325de618a60a7b84a128743e2c252adfed7644edeb691169317cb0f2495369bdd
- SSDEEP
  
  1536:c9oSzLN0uUsyaObcsrEzBTTUphYjevWRyFMqIDH:8oSzphUU9BTgYaWYiqIDH
Score

10^/10

revengerat stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

stealerrevengerat

behavioral1

revengeratstealertrojan

behavioral2

© 2018-2024

Terms | Privacy