revengerat | 23b641de04ec8179cd5ead0b7a8741422fb96dae97996ea76bfc962992e165f5 | Triage

Submit
Reports

Overview

overview

Static

static

1

3bae22073d...18.exe

windows7-x64

3bae22073d...18.exe

windows10-2004-x64

Sharing

General

Target

3bae22073d75f9ec3dc0292009447306_JaffaCakes118
Size

604KB
Sample

240512-x2eemsfb89
MD5

3bae22073d75f9ec3dc0292009447306
SHA1

3167b62ac31cacf6c798eb147bf8a4568197e4b2
SHA256

23b641de04ec8179cd5ead0b7a8741422fb96dae97996ea76bfc962992e165f5
SHA512

eb2157f95b30d75185728e91e2ff4de4168434a0c39eb4012d4b575ae3032655e1e304d5804dcd5168766ab3b422e92b4be7016dc632985f839d836bf12eeb94
SSDEEP

12288:37lw1Dx0plwfX9F59l3N8aF7ysgfBnnl2Cp:37m1DkuFDl3maF7ysgpnncO

Score

10^/10

revengerat stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

3bae22073d75f9ec3dc0292009447306_JaffaCakes118.exe

Resource

win7-20240220-en

revengerat stealer trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

3bae22073d75f9ec3dc0292009447306_JaffaCakes118.exe

Resource

win10v2004-20240508-en

revengerat stealer trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  3bae22073d75f9ec3dc0292009447306_JaffaCakes118
- Size
  
  604KB
- MD5
  
  3bae22073d75f9ec3dc0292009447306
- SHA1
  
  3167b62ac31cacf6c798eb147bf8a4568197e4b2
- SHA256
  
  23b641de04ec8179cd5ead0b7a8741422fb96dae97996ea76bfc962992e165f5
- SHA512
  
  eb2157f95b30d75185728e91e2ff4de4168434a0c39eb4012d4b575ae3032655e1e304d5804dcd5168766ab3b422e92b4be7016dc632985f839d836bf12eeb94
- SSDEEP
  
  12288:37lw1Dx0plwfX9F59l3N8aF7ysgfBnnl2Cp:37m1DkuFDl3maF7ysgpnncO
Score

10^/10

revengerat stealer trojan
- RevengeRAT
  Remote-access trojan with a wide range of capabilities.
  trojan revengerat
- RevengeRat Executable
  stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

revengeratstealertrojan

behavioral2

revengeratstealertrojan

© 2018-2025

Terms | Privacy