Overview

overview

10

Static

static

10

0828ec6954...18.exe

windows7-x64

1

0828ec6954...18.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    0828ec69549937b8ba271bf088bfc472_JaffaCakes118

  • Size

    16KB

  • MD5

    0828ec69549937b8ba271bf088bfc472

  • SHA1

    7d839dd8f7657ac6509eab927ec129f8910afe7a

  • SHA256

    b4d24111027d99bd0e7782a91122b314a5d032b1c1e328661924fde5cdf0713b

  • SHA512

    c6889f554d00c8a85ff373c9e00f1aaae0785daa51713f6a65272ea36410a2ab24b4992e22903732cc7f835727eb06323059d4858c4d59f5ea9ddb39417def32

  • SSDEEP

    384:NSdaB3idNFDnvr/9oDPlMNcLlb5sVKDyS5Ct:NSdaB3idNBzclMNEno

Score
10/10
stealerguestrevengerat

Malware Config

Extracted

Family

revengerat

Botnet

Guest

C2

mfriend-35185.portmap.io:35185

Mutex

RV_MUTEX

Signatures

  • RevengeRat Executable 1 IoCs
    stealer
  • Revengerat family
    revengerat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0828ec69549937b8ba271bf088bfc472_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections